FWFW
Firewall fuckwittedness....
\r\n\r\nCheck /usr/share/nmap/nmap-services for common ports. You'll find web services on 80, sometimes 81 or 88, 8000, 8080, and occasionally 8001-8009, and 8081-8089, or just plain random values. Discovered most of these when running Junkbuster proxy and explicitly including ports.
\r\n\r\nI'd file a request against both the vendor (yes, they should run :80) and your security staff (if nothing else, they could admit the one 8080 port).
\r\n\r\nFrom the above file, some HTT[PS] related services:
\r\n\r\n\r\n\r\nhttp 80/tcp # World Wide Web HTTP\r\nhttp 80/udp # World Wide Web HTTP\r\nhttp-mgmt 280/tcp # \r\nhttp-mgmt 280/udp # \r\nhttps 443/tcp # secure http (SSL)\r\nhttps 443/udp # \r\ngss-http 488/tcp # \r\ngss-http 488/udp # \r\nhttp-alt 591/tcp # FileMaker, Inc. - HTTP Alternate\r\nhttp-alt 591/udp # FileMaker, Inc. - HTTP Alternate\r\nhttp-rpc-epmap 593/tcp # HTTP RPC Ep Map\r\nhttp-rpc-epmap 593/udp # HTTP RPC Ep Map\r\nsquid-http 3128/tcp #\r\nproxy-plus 4480/tcp # Proxy+ HTTP proxy port\r\nconnect-proxy 5490/tcp # Many HTTP CONNECT proxies \r\nvnc-http 5800/tcp # Virtual Network Computer HTTP Access, display 0\r\nvnc-http-1 5801/tcp # Virtual Network Computer HTTP Access, display 1\r\nvnc-http-2 5802/tcp # Virtual Network Computer HTTP Access, display 2\r\nvnc-http-3 5803/tcp # Virtual Network Computer HTTP Access, display 3\r\nanalogx 6588/tcp # AnalogX HTTP proxy port\r\nhttp-alt 8000/tcp # A common alternative http port\r\nhttp-proxy 8080/tcp # Common HTTP proxy/second web server port\r\nhttps-alt 8443/tcp # Common alternative https port\r\nsun-answerbook 8888/tcp # Sun Answerbook HTTP server\r\nsnet-sensor-mgmt 10000/tcp # SecureNet Pro Sensor https management server\r\n\r\n