I downloaded utorrent and tried downloading something...I used the port 6969. Without any editings on my modem..by default port forwarding succeed with green light and is OK.How can I close my port ? I don't use utorrent much. I have DMZ option under NAT..don't have virtual server option under NAT. Thanks.
-
Amazon Deals - ToS - Warp
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
BSNL Broadband: Close Port Forwarding: Dataone UT300RTU Modem
- Thread starter user10
- Start date
- Replies 8
- Views 9,198
Are you sure that the port(s) are open and you are vulnerable. :huh:
Sounds like you have normal configuration. Try the world famous GRC shield's up test and see if you are vulnerable. For the record, I have allowed portforwarding but get perfect score in security, so no risk.
1.
I just did a test on myself. See for both "Common Ports" and "File Sharing" I get all clear when not running utorrent. So I'm safe. See for yourself:
http://img131.imageshack.us/my.php?image=u5kr5.jpghttp://g.imageshack.us/thpix.phphttp://img266.imageshack.us/my.php?image=u6fe9.jpghttp://g.imageshack.us/thpix.php
PS: For f**** sake this image limitation is annoying I can't even post examples anymore. can't differntiate between thumbnails and linked images AAARG :wall: I'll make another post in a moment.
Sounds like you have normal configuration. Try the world famous GRC shield's up test and see if you are vulnerable. For the record, I have allowed portforwarding but get perfect score in security, so no risk.
1.
I just did a test on myself. See for both "Common Ports" and "File Sharing" I get all clear when not running utorrent. So I'm safe. See for yourself:
http://img131.imageshack.us/my.php?image=u5kr5.jpghttp://g.imageshack.us/thpix.phphttp://img266.imageshack.us/my.php?image=u6fe9.jpghttp://g.imageshack.us/thpix.php
PS: For f**** sake this image limitation is annoying I can't even post examples anymore. can't differntiate between thumbnails and linked images AAARG :wall: I'll make another post in a moment.
2. Regarding your configuration: DMZ should be "off" or "disabled" unless you have very good reasons to allow it.
http://img411.imageshack.us/my.php?image=u1xn0.jpghttp://g.imageshack.us/thpix.phphttp://img158.imageshack.us/my.php?image=u2gj1.jpghttp://g.imageshack.us/thpix.phphttp://img50.imageshack.us/my.php?image=u3te9.jpghttp://g.imageshack.us/thpix.php
If you want to allow utorrent to use a port, allow it in "Filter" category. There must be something like that in your modem.
http://img136.imageshack.us/my.php?image=u4ma3.jpghttp://g.imageshack.us/thpix.php
utorrent only uses that port when it is active. Otherwise with the program closed no traffic should be on that port. I would also recommend that you shift your default port to higher in the range, something bigger.
http://img411.imageshack.us/my.php?image=u1xn0.jpghttp://g.imageshack.us/thpix.phphttp://img158.imageshack.us/my.php?image=u2gj1.jpghttp://g.imageshack.us/thpix.phphttp://img50.imageshack.us/my.php?image=u3te9.jpghttp://g.imageshack.us/thpix.php
If you want to allow utorrent to use a port, allow it in "Filter" category. There must be something like that in your modem.
http://img136.imageshack.us/my.php?image=u4ma3.jpghttp://g.imageshack.us/thpix.php
utorrent only uses that port when it is active. Otherwise with the program closed no traffic should be on that port. I would also recommend that you shift your default port to higher in the range, something bigger.
@user10
http://192.168.1.1/hwhtml/pMain.html
Try under Advanced. confirm modem is UT300RTU or UT300R2U.
If latter Under Advanced " Virtual server" option is not available in one model.
Post screen shot of Device status page.
Example:http://img156.imageshack.us/img156/3443/25105080px5.th.jpg
Check in portforward.com. for modem pages if same.
You can Use DMZ with firewall and AV programs.
http://wiki.broadbandforum.co/Port_Forwarding#For_UT-300R2U
http://192.168.1.1/hwhtml/pMain.html
Try under Advanced. confirm modem is UT300RTU or UT300R2U.
If latter Under Advanced " Virtual server" option is not available in one model.
Post screen shot of Device status page.
Example:http://img156.imageshack.us/img156/3443/25105080px5.th.jpg
Check in portforward.com. for modem pages if same.
You can Use DMZ with firewall and AV programs.
http://wiki.broadbandforum.co/Port_Forwarding#For_UT-300R2U
http://img100.imageshack.us/my.php?image=porttest1gv8.png
http://g.imageshack.us/img100/porttest1gv8.png/1/
http://img183.imageshack.us/my.php?image=porttest2ld5.pnghttp://g.imageshack.us/thpix.php
Thanks all for replying..
I uploaded my DMZ host and filter router images..Do you suggest me to close the open ports: 135, 445. (according to my previous posts). If so, please suggest how to do.
http://img352.imageshack.us/my.php?image=dmz1jk5.png
http://img511.imageshack.us/my.php?image=filterky2.png
http://g.imageshack.us/img100/porttest1gv8.png/1/
http://img183.imageshack.us/my.php?image=porttest2ld5.pnghttp://g.imageshack.us/thpix.php
Thanks all for replying..
I uploaded my DMZ host and filter router images..Do you suggest me to close the open ports: 135, 445. (according to my previous posts). If so, please suggest how to do.
http://img352.imageshack.us/my.php?image=dmz1jk5.png
http://img511.imageshack.us/my.php?image=filterky2.png
1. About open ports (first and second port test images), I think I have disabled tens of services in the Windows XP OS itself. So no issues for me there. There are tutorials that guide you how to disable unnecessary services in XP. Of course you have to determine wheter you need specific service etc, and don't go disabling essential services (predictable consequence...).
http://img20.imageshack.us/my.php?image=r5lk9.jpghttp://g.imageshack.us/thpix.phphttp://img171.imageshack.us/my.php?image=r6hk7.jpghttp://g.imageshack.us/thpix.phphttp://img115.imageshack.us/my.php?image=r7ac8.jpghttp://g.imageshack.us/thpix.phphttp://img406.imageshack.us/my.php?image=r8ye8.jpghttp://g.imageshack.us/thpix.php
Personally I'll recommend that you some of these tutorial type articles (1, 2) and use common sense to disable the totally needless services.
My parent's computer had all this crud enabled and set to 'auto', and I had to waste an entire day before I gave up and formatted + reinstalled because the entire system had become compromised with more crap than anyone can imagine. :wall:
2. Don't worry much about Ping failure. People can ping you when you are connected but since with dataone (NIB-2) we get new IP everytime we connect the chances are small that you'll get harrased. If you want to disable ping (and once you do so you will not be able to ping or traceroute websites unless you re-enable it in modem), you have to block all traffic in ICMP protocol.
To do this, click on the "protocol" in your third image (filterky2.png), select ICMP and block both incoming and outgoing traffic. Since I do not have that particular model, you'll have to rely on google if you are not able to understand certain step. But I can show you my configuration for some idea:
http://img519.imageshack.us/my.php?image=r2tl9.jpg
3. DMZ we have already discussed. For precise steps on how to keep it disabled, you'll have to search on google. Something like "disable DMZ on Huawei MT841".
4. This converstation started with utorrent. Which port is utorrent using now. I recommend that you probe that particular port with GRC shield's up (it allows you to test specific ports, port ranges...) after you have made all these changes. Test while utorrent is not running.
(More in next post...too many images etc.)
http://img20.imageshack.us/my.php?image=r5lk9.jpghttp://g.imageshack.us/thpix.phphttp://img171.imageshack.us/my.php?image=r6hk7.jpghttp://g.imageshack.us/thpix.phphttp://img115.imageshack.us/my.php?image=r7ac8.jpghttp://g.imageshack.us/thpix.phphttp://img406.imageshack.us/my.php?image=r8ye8.jpghttp://g.imageshack.us/thpix.php
Personally I'll recommend that you some of these tutorial type articles (1, 2) and use common sense to disable the totally needless services.
My parent's computer had all this crud enabled and set to 'auto', and I had to waste an entire day before I gave up and formatted + reinstalled because the entire system had become compromised with more crap than anyone can imagine. :wall:
2. Don't worry much about Ping failure. People can ping you when you are connected but since with dataone (NIB-2) we get new IP everytime we connect the chances are small that you'll get harrased. If you want to disable ping (and once you do so you will not be able to ping or traceroute websites unless you re-enable it in modem), you have to block all traffic in ICMP protocol.
To do this, click on the "protocol" in your third image (filterky2.png), select ICMP and block both incoming and outgoing traffic. Since I do not have that particular model, you'll have to rely on google if you are not able to understand certain step. But I can show you my configuration for some idea:
http://img519.imageshack.us/my.php?image=r2tl9.jpg
3. DMZ we have already discussed. For precise steps on how to keep it disabled, you'll have to search on google. Something like "disable DMZ on Huawei MT841".
4. This converstation started with utorrent. Which port is utorrent using now. I recommend that you probe that particular port with GRC shield's up (it allows you to test specific ports, port ranges...) after you have made all these changes. Test while utorrent is not running.
(More in next post...too many images etc.)
(...This is nothing but a continuation of the last post.)
5. How have you configured utorrent itself? To illustrate, I have unchecked both "Enable UPnP port mapping" and "Enable NAT-PMP port mapping". Why? Because UPnP has security issues, and my ADSL modem doesn't support NAT-PMP anyway :
http://img267.imageshack.us/my.php?image=r3kw3.jpghttp://g.imageshack.us/thpix.php
Likewise, in ADSL modem too:
http://img513.imageshack.us/my.php?image=r4gg1.jpghttp://g.imageshack.us/thpix.php
So how do I allow portforwarding? What I have done is add an entry to the IP Filters category of my ADSL modem.
http://img238.imageshack.us/my.php?image=r9ty0.jpghttp://g.imageshack.us/thpix.php
The key: Protocol is TCP, and Port should be the one you have selected in utorrent program (aka "Port used for incoming connections"). Since i can't play with your modem you'll have to read the PDF manual or google on how to do the same.
And the benefit (in case anyone was wondering) of configuring the system in this way is, even when I probe the system on specific utorrent port (when utorrent is not running), I get this:
http://img511.imageshack.us/my.php?image=r10sm8.jpghttp://g.imageshack.us/thpix.php
No ports open. No ports closed. All ports stealth.
5. How have you configured utorrent itself? To illustrate, I have unchecked both "Enable UPnP port mapping" and "Enable NAT-PMP port mapping". Why? Because UPnP has security issues, and my ADSL modem doesn't support NAT-PMP anyway :
http://img267.imageshack.us/my.php?image=r3kw3.jpghttp://g.imageshack.us/thpix.php
Likewise, in ADSL modem too:
http://img513.imageshack.us/my.php?image=r4gg1.jpghttp://g.imageshack.us/thpix.php
So how do I allow portforwarding? What I have done is add an entry to the IP Filters category of my ADSL modem.
http://img238.imageshack.us/my.php?image=r9ty0.jpghttp://g.imageshack.us/thpix.php
The key: Protocol is TCP, and Port should be the one you have selected in utorrent program (aka "Port used for incoming connections"). Since i can't play with your modem you'll have to read the PDF manual or google on how to do the same.
And the benefit (in case anyone was wondering) of configuring the system in this way is, even when I probe the system on specific utorrent port (when utorrent is not running), I get this:
http://img511.imageshack.us/my.php?image=r10sm8.jpghttp://g.imageshack.us/thpix.php
No ports open. No ports closed. All ports stealth.
Similar threads
- Replies
- 4
- Views
- 996
- Replies
- 2
- Views
- 1,424
