Opening ports 25 and 110?

Similar Messages

• Firewall in 10.5, how to open ports and how to manage?

  I am pulling my hair out with the new firewall in 10.5. In 10.4 I could just set ports as I liked in the control panel, in 10.5 there is no such thing.
  I need to for example open port 49999 to allow PageSender to function in my network.
  I need to open port 5901 to work with JollyFast VNC, as port 5900 is used by Apple Remote Desktop and the conflict if they both use the same port.
  Some of these ports I need permanent open like 59999 and others for one session and than close again, like 5901. Again in 10.4 I made the rule in the pref pane, ticked the box and Bob was your uncle. Now?
  I would like to be able to see what ports are open and active on the machine. I have no idea as to where I could see this.
  And at the same time I would like to keep the firewall as closed as possible as I am often on line in hotels etc.
  So I need help, is there a manual somewhere someone is aware of? Or do you have any answers?

  The new Application Firewall does not work in the same way as IPFW (the main firewall in 10.4).
  Instead of managing ports, it simply controls the access of applications to any port. Thus, if you want PageSender to receive connections, you simply need to switch the firewall to "Set access for specific services and applications", and then add PageSender to the list, with "Allow incoming connections". When you do this, PageSender will be able to receive connections on any port that it needs to.
  If you don't like this method of controlling connections, you can still use IPFW. Apple has removed the GUI, but you can download a GUI application like [NoobProof|http://www.hanynet.com/noobproof> or [WaterRoof|http://www.hanynet.com/waterroof/index.html], and you can then set access for specific ports.
  There are no problems with using both IPFW and Application Firewall.
  Cheers,
  Rodney

• Monitoring open ports and IP adresses on Windows clients

  I'm using SCOM 2012 for monitoring system. 
  I cannot find how to monitor open ports (TCP, UDP) and IP addresses on Windows based PCs. I need that kind of report for Internal auditors and Security officer.
  Is it possible to get Windows Firewall State, collect it in SCOM and prepare report on monthly base?
  tnx in advance

  I have found a possibility to do this. Hope you understand this and it is helpful. This is a two step process but guess will definitely server the purpose.
  Scope: We will be running a tool which will monitor a port (TCP or UDP) for a specific host / IP and will throw a log file.
  SCOM will monitor the log file and will throw a alert if the log file contains the string NOT LISTENING (Port not working or unable to open the port) which the program will create the log with the results.
  First download the program named: PortQry Command Line Port Scanner Version 2.0 from microsoft using the below link. It is a command line tool.
  http://www.microsoft.com/en-in/download/details.aspx?id=17148
  Run it using by making a batch file or powershell script using task scheduler as per your time requirement (Every 5 min or 1Hr).
  Use this command to monitor a ip / hostname and its port with TCP or UDP.
  I have pasted the command file of the program in C:\Port_checker directory so i am using the below syntax
  C:\Port_checker\PortQry.exe -N 192.168.1.1 -e 5723 -p UDP -l C:\Port_checker\Result.log /y
  -N = Hostname / FQDN of agent or Ip address
  -E = Port # what you want to monitor
  -P = Protocol (TCP or UDP)
  -L = Generate log on the following location and name
  /Y = To replace the existing log file name to fresh one without prompt.
  The result in the log file will be as follows:
  ============================
  For successful port open:
  PortQry Version 2.0 Log File
  System Date: Tue Oct 07 09:42:32 2014
  Command run:
   C:\PortQryV2\PortQry.exe -N 192.168.1.1 -e 5723 -p UDP -l C:\Portqryv2\Result.log /y
  Local computer name:
   192.168.1.2
  Querying target system called:
   192.168.1.1
  Attempting to resolve name to IP address...
  Name resolved to 192.168.1.1
  querying...
  UDP port 5723 (unknown service): LISTENING
  ========= end of log file ========= 
    PortQry developed by Tim Rains
  For failure port open:
  PortQry Version 2.0 Log File
  System Date: Tue Oct 07 09:42:32 2014
  Command run:
   C:\PortQryV2\PortQry.exe -N 192.168.1.1 -e 5723 -p UDP -l C:\Portqryv2\Result.log /y
  Local computer name:
   192.168.1.2
  Querying target system called:
   192.168.1.1
  Attempting to resolve name to IP address...
  Name resolved to 192.168.1.1
  querying...
  UDP port 5723 (unknown service): NOT
  LISTENING
  ========= end of log file ========= 
    PortQry developed by Tim Rains
  Now as per the above results NOT LISTENING Port is blocked or is not opened and LISTENINGmeans
  working or port is opened.
  So now using SCOM you will monitor the log file Result.log in the location C:\Port_checker\ saying
  if NOT LISTENING comes in the log file throw me a alert in SCOM consle or via email.
  To configure that alert you need to create a Generic text log alerting Rule which will throw a alert if any thing added in that log which is not to be added and if it is added like NOT
  LISTENING then it will throw a alert.
  Refer this link on how to open a Generic text log alerting Rule.
  http://blogs.technet.com/b/kevinholman/archive/2009/06/20/using-a-generic-text-log-rule-to-monitor-an-ascii-text-file-even-when-the-file-is-a-unc-path.aspx
  Gautam.75801

• I need to open ports, and nothing I've read seems to help me

  I have an aiport express, it's my only router.  it's connected directly to my cable modem (TWC).  I have no firewall for incoming (there's no options for outgoing) no matter what combination of settings I use, I can't seem to get more than port 5000 open. Why 5000?  and why can't I get any other port open?

  There are heaps of posts here about how to open ports on apple routers specifically for xboxes.
  AirPort Extreme and xbox 360

• Checking for open ports and looking for unauthorized traffic

  I would like to know if there is an easy way to look at all the ports on the computer and if so how to determine which one are authorized and how to detect suspicious traffic. thanks
  Jeff

  Jeff,
  Here are a few links to help you answer your question:
  1. Using a firewall to protect your computer
  2. Setting advanced firewall options
  3. How Firewalls Work
  These sites will test your installation:
  1. Sheilds UP!
  2. Sygate Online Services
  If you are worried about suspicious traffic, Little Snitch is often recommended. It listed in Detecting and avoiding malware and spyware, by Dr. Smoke.
  ;~)

• RV215W inbound rules with control ip - cannot open port 25

  I have the exact same router, exact same firmware and the this exact same problem.  I cannot open port 25 and specify a range of IP addresses.  This is simply not working.  What do we have to do to get this to work correctly?  When I port forward the SMTP service it allows all IP's and works fine.  When i try to use an Access Rule, it does not work.  Can someone from CISCO help please?  Thanks,

  It's not just single port forwarding that has bugs, the entire router has bugs and simply does not work as advertised. I have found the following bugs/aspects of this router that just does not work correctly: 1. If you have to open ports, and who doesn’t, this router will eventually stop accepting packets from WAN>LAN. You will still have Internet access but no open ports. A reboot will fix this problem. Oh, by the way, this router has no scheduled reboot option! ••ßThat would be a workaround but a welcome one for this router. 2. Firewall Access rules do not work!! Yep, a Cisco router and basic functionality simply does not work. I called Cisco and even though the tech saw the router not working denied it was a bug! Said we have to do port mirroring, setup a workstation with WireShark and capture packets so we can debug the issues! I told him I would have appreciated if Cisco would have debugged the issues with their router BEFOR they shipped the units. Stay away from Cisco Small Business Routers. I wish I had. And if there are any Cisco die-hards out there willing to prove me wrong, just reply to this and please, prove me wrong that the RV series and specifically the RV215W is not JUNK.

• WLC Virtual interface listening on ports 25 and 110

  I'm securing my guest WLAN and have WLC ACL's in place and the network is segmented from everything else but I decided to run a port scan against the virtual WLC interface (1.1.1.1 for me) and ports 25 and 110 are listening. I connected to 25 and it connects but you can't do any SMTP commands.
  Anyone know why these would be open and any concern?

  It is always recommended to have the ACLs configured on the wired side of the network rather than the wireless side of the network.can you provide the ACL configuration so that we can understand the configuration and find the modification to be done in the same to rectify the issue.

• I have a game on my xbox one that is telling me I need to open ports in order to play it I am not all that tech savvy and have no idea how to do this

  I have an airport extreme and I am trying to play a new game on my xbox one and it keeps kicking me I have comcast internet that is more than fast enough so I went to the games site and it says I need to either create a static ip or to open ports no idea how to do either of these or what that does any help would be appreciated.

  There are heaps of posts here about how to open ports on apple routers specifically for xboxes.
  AirPort Extreme and xbox 360

• How do I open ports on my airport extreme and assign a fixed IP Address for a device connected to my network?

  I recently had a security system installed in my house.  One of the features is an EPAD which enables me to have a virtual keypad on my iphone, and computer to operate the alarm system.  The technician was not familiar with Mac's and Airports.  How do I open port 80 to 80 in my airport and assign a fixed IP address for the EPAD?  Apparently this is what is needed to make this work.

  There are three ranges of "strictly local" IP addresses reserved for local Network use:
  192.168.xxx.yyy
  172.16.xxx.yyy
  10.xxx.yyy.zzz
  What your Router does for you is to act as your agent on the Internet.Your requests are packaged up and forwarded on your behalf, and only when a response is expected is the response returned to your local IP address.
  Directing Network Traffic to a Specific Computer on Your
  Network (Port Mapping)
  AirPort Extreme uses Network Address Translation (NAT) to share a single IP address with the computers that join the AirPort Extreme network. To provide Internet access to several computers with one IP address, NAT assigns private IP addresses to each computer on the AirPort Extreme network, and then matches these addresses with port numbers. The wireless device creates a port-to-private IP address table entry when a computer on your AirPort (private) network sends a request for information to the Internet.
  If you’re using a web, AppleShare, or FTP server on your AirPort Extreme network, other computers initiate communication with your server. Because the Apple wireless device has no table entries for these requests, it has no way of directing the information to the appropriate computer on your AirPort network.
  To ensure that requests are properly routed to your web, AppleShare, or FTP server, you need to establish a permanent IP address for your server and provide inbound port mapping information to your Apple wireless device.
  To set up inbound port mapping:
  1) Open AirPort Utility, select your wireless device, and then choose Base Station > Manual Setup, or double-click the device icon to open its configuration in a separate window. Enter the password if necessary.
  2) Click the Advanced button, and then click Port Mapping.
  3) Click the Add button and choose a service, such as Personal File Sharing, from the Service pop-up menu.

• Hi skydiver, I have ios7.4, I tried two different USB ports and it still doesn't show,up on my desktops in my computer as iPad so I can't click it. If it was there I would open and see all my photos, and YES it ask me DO I trust this computer! several tim

  Hi skydiver, I have ios7.4, I tried two different USB ports and it still doesn't show,up on my desktop in my computer as iPad so I can't click it. If it was there I would open and see all my photos, and YES it ask me DO I trust this computer! several times.
  The apple tech on the phone, went to my control,panel
  Went to my devices. Original iPad showed up,there In red and then he had me go,to apple website, download something and it said it could configure to my computer.
  Is,finally answer,to me was go to the apple care,one on one appointment, and it's my "software"
  A man I know told me "Apple at store, won't be able to do,anything for me"
  That's not very positive.
  What else? Can't I download iPad drivers,into my computer?

  iPad not appearing in iTunes
  http://www.apple.com/support/ipad/assistant/itunes/
  iOS: Device not recognized in iTunes for Mac OS X
  http://support.apple.com/kb/TS1591
  iOS: Device not recognized in iTunes for Windows
  http://support.apple.com/kb/TS1538
  iTunes for Windows: Device Sync Tests
  http://support.apple.com/kb/HT4235
  IOS: Syncing with iTunes
  http://support.apple.com/kb/HT1386
  Apple - Support - iPad - Syncing
  http://www.apple.com/support/ipad/syncing/
  iTunes 10.5 and later: Troubleshooting iTunes Wi-Fi Syncing
  http://support.apple.com/kb/ts4062
   Cheers, Tom

• I have a dvr and I want to monitor from my phone.  this worked when I had a Belkin router that let me open ports.  I use "canyouseeme" and it can't see 80, 9000 or 1025. How do I make them available?

  I have a Lorex DVR that I want to monitor from my IPhone and IPad.  I used to be able to do this when I had a Belkin router (easy to open ports) but I bought the AirPort Extreme router and no longer have that capability.  When I use "canyouseeme" they can NOT see 80, 9000 or 1025.  Lorex says I need them all available in order to access.  Help!  And all the help I see refers to a earlier version of the AirPort Utility so I cant use those to look at anything, I cant find the same screens, I have version 6.1 (610.31).  I also don't really understand how ports work, so I need a pretty basic explanation.

  Well...I went to the modem (Westell, WireSpeed), found the NAT settings, once again, I'm WAY over my head, I am assuming this is a TCP connection (as opposed to a UDP) and per Lorex my mobile devices will use port 1025.  So I gave it a "global port range" of 1-10 and I indicated that the "base host port" was 80, 1025, & 9000 (ports 1,2,3).  When I selected the 'enable' it asked for a "host devise" my choices are my IPhone, IMac and the IP address for the dvr, so I choose the dvr.  I still cannot connect and canyouseeme still can NOT find these open ports.  This is taking up my whole day! I don't know how people figure this stuff out.

• Can't update iOS 8 on my iPhone5 through iTunes on Windows 8 (error 3004, 3194). Updated host file, opened port 80, 443; turned off security system and firewall, etc. But nothing works. How to solve this problem?

  Can't update iOS 8 on my iPhone5 through iTunes on Windows 8 (error 3004, 3194). Updated host file, opened port 80, 443; turned off security system and firewall, etc. But nothing works. How to solve this problem?

  Hi the_mad_movies,
  It seems like this article will be the best option for addressing this issue:
  Error 3194, Error 17, or "This device isn't eligible for the requested build"
  http://support.apple.com/kb/ts4451
  Thanks for coming to the Apple Support Communities!
  Cheers,
  Braden

• Ports and IPs to be open/permitted in firewall to download and work in creative cloud

  What is the complete list of ports and IP addresses to be open/permited in our enterprise firewall in order to let internal PCs download and work with creative cloud applications?

  Our firewall only supports IP configuration (not URL). Do you have IP list?
  From: Rajshree [email protected]
  Sent: miércoles, 06 de noviembre de 2013 17:23
  To: Simon, Mariano
  Subject: Ports and IPs to be open/permitted in firewall to download and work in creative cloud
  Re: Ports and IPs to be open/permitted in firewall to download and work in creative cloud
  created by Rajshree <http://forums.adobe.com/people/Rajshree>  in Adobe Creative Cloud - View the full discussion <http://forums.adobe.com/message/5819892#5819892

• Open Port 80, 16384-16482, and 5060-5061

  How do I open ports 80, 16384-16482, and 5060-5061 and forward them to more than one IP address and still keep my network secure?
  I have2 VOIP phones that I would like to get working. I can get the one working by using Port Forwarding and forwarding all these ports to its private ip address. However I believe I need to duplicate this for my second VOIP phone but you can't have the same port forwarded to different ip addresses under Port Forwarding.
  I have a WRT54GS.
  Thank you,
  Brandon
  Message Edited by 2fast4u on 02-20-2009 07:01 PM

  For your 2nd VOIP phone i think you can Do is Port Triggering or you can use DMZ for your 2nd VOIP as your VOIP phone will have a Static IP.

• Default LaunchDaemons and open ports?

  I recently have written a port scanner for a project at my university and after running it, I discovered that a large portion of my Macbooks' well known ports was open.
  These were 21 (ftp), 22 (ssh), 23 (telnet), 53 (domain), 79 (finger)!!, 88 (kerberos), 512 (exec)!!, 513 (login), and a bunch of others (see picture below for open ports - afterwards entered @ grc.com).
  I checked, if they are reachable from the internet (see picture below). They were not, but that does not say a lot(?), because if someone wanted to make a bot out of my Mac or collect data from it, this person could contact a C&C server from my machine and start communicating without opening any port of the NAT router, as the router allows bidirectional communication if started by the client(?).
  I checked, if these ports are reachable from within a local network, by requesting the services behind them from another computer running Linux. And they are! Everyone within the Non-VPN networks of my university was and is able to fetch personal information from me over fingerd! To prevent further leakage, I will block any incoming connections from now on.
  > finger user@{Macbook's IP}
  same output as when running locally
  > finger user@localhost
  [localhost]
  Trying ::1...
  Login: MyUserName         Name: MyNameReplaced
  Directory: /Users/MyUserName            Shell: /usr/local/bin/fish
  On since Sun Oct 26 13:02 (CET) on console, idle 7:52 (messages off)
  On since Sun Oct 26 17:15 (CET) on ttys000
  On since Sun Oct 26 20:25 (CET) on ttys001, idle 0:05
  No Mail.
  No Plan.
  I am able to login to the Mac via telnet over the LAN, etc.
  I checked the configuration of my firewall. It is/was activated. Signed software is allowed to accept incoming connections. Cloaking is not activated and I am not blocking every incoming connection. There are five services in the list below, they are all from Apple. I can not remove them. The minus button is grayed out.
  When I ticked 'Block all incoming connections', the services behind the ports were no longer detectable/reachable from the LAN, but the daemons are still running on the Mac!
  So my question is, why are these daemons running?! Why on earth is the fingerd running or exec?! This seems not normal. Who has started them (software or person)? I strongly limit access to my computer. I always lock it, when leaving it unattended. I use NoScript in Firefox. Never do I open attachments from mails.
  I checked the Mac of a friend with my PortScanner (in his LAN and on his Mac) and his has none of the ports open mine has.
  I have not checked my ports/firewall for a long time, so I can't remember if those ports were closed at any time before.
  Meanwhile I will read something about launchd, to gather more information.

  I'm not an expert on this, but I'm not certain what you are concerned about. All messaging in unix systems is done through ports, and so a variety of ports need to be open for normal system operations. OS X out-of-the-box probably strikes a balance between convenience and paranoia - ports that might be more secure closed left open by default so that novice users aren't driven out of their wits - but I can't imagine that it leaves open anything that constitutes a true vulnerability. Or if it does, you should file a bug report.
  I'm told every med student suffers from hypochondria at one point or another, and I know that every comp sci student will sooner or later have a short freak-out over security. So take a deep breath...

• DMZ and open ports

  Hi all!
  This is my first post on this forum I've been tinkering around with honey pots and set one up on my home network. A tutorial I was following mentioned about putting it in the DMZ. So I did. When I was at work I conducted a nmap scan of my home router. SO MANY OPEN PORTS! Of course setting up a DMZ this is to be expected. HH being HH only the honeypot is in it but I'm a little worried that even though I have only put the honey pot in the DMZ, are all the opened ports open to the rest of my network? As I understad it I am wrong but I am concerned just want to double check! Also when I turned of the DMZ and did another scan I found port 4567 to be open. I quick search flagged up a few results. Many people seem to say ignore it but others have said its possible for to be a back door. If I type in my public ip:4567 I get faced with a login page! I have heard that BT install a backdoor on their routers for the NSA and GCHQ normally I'd fob such things off but would be interested to know what is going on with that open port! 
  Thanks in advance guys!

  When you have anchor/foreign, the web auth traffic always go to the anchor, so  with CWA, the traffic from the anchor to the ISE will need to be permitted . go through the following link this may of help
  https://supportforums.cisco.com/docs/DOC-26442