I am hosting a Next.js application on Vercel. Recently, a user from my community performed a port scan on my domain and sent me a screenshot showing several open ports, including 21 (FTP), 22 (SSH), and 25 (SMTP), alongside the expected 80 and 443.
Since my application is deployed on Vercel’s Serverless/Edge infrastructure, I understand that I do not manage a traditional server with these services running.
Could somone please confirm if these open ports are part of Vercel’s Edge Network/Load Balancer infrastructure responding to scanners, and confirm that this is a false positive regarding the security of my specific application code and data?
Screenshot uploaded on Imgur, link below:
