Port 113 and shorewall
I did try to make port ident 113 stealth (now is closed) and in the /etc/shorewall/rule I added the line:
DROP fw net tcp 113
but doesn't work. I scan ports on www.grc.com and port 113 is still "closed".
Thanks in advance...
If you're behind a router, it's possible that the router is blocking 113. The packets never even get to your PC. Try poking around in your router configuration for any relevant settings.
Similar Messages
-
WRT610N: Port 113 refuses to be enabled
The checkbox in Security/Firewall refuses to become uncheckable. What releases the lock on this checkbox?
Thanks...
Message Edited by mikepaul on 04-26-2009 04:02 PM
Message Edited by mikepaul on 04-26-2009 04:06 PM
Solved!
Go to Solution.Filter Anonymous Internet Requests...
Check the box 'Filter Anonymous Internet Requests' then uncheck Filter Ident (Port 113) and then uncheck Filter Anonymous Internet Requests... -
I just visited the Shields UP!! website (after seeing a demonstration at my local users group). The demonstrator's computer at the meeting passsed all the tests, but mine (at home) failed the "Solicited TCP Packets". It said that port 113 was in "closed" status not stealth. It said my computer has responded that this port exits by is currently closed to connections. Should I be concerned???? I am currently using a NetGear router with NAT.
Shields UP!! went on to say this:
New users of NAT routers, who use this site to check their security, are often disappointed to discover a single closed (blue) port floating in a calm sea of stealth green.
The good news is . . . it is possible to configure NAT routers to return them to full stealth. The trick is to use the router's own "port forwarding" configuration options to forward just port 113 into the wild blue yonder. Just tell the router to forward port 113 packets to a completely non-existent IP address, one way up at the end of your router's internal address range. The router will then NOT return a port closed status. It will simply forward the port 113 packet "nowhere" . . . and your network will be returned to full stealth status.
Should I do this???
Thanks,
WilliamIt said that port 113 was in "closed"
status not stealth. It said my computer has
responded that this port exits by is currently closed
to connections. Should I be concerned???? I am
currently using a NetGear router with NAT.
Personally, I wouldn't be concerned. The difference between "closed" and "stealth" is usually very small. A hacker would still have to use the correct password to get past the "closed" status of the port. If the port didn't respond at all, the hacker wouldn't even know that it was there. And that is just at the router. The hacker still has no idea what is behind the router. That is one of the benefits of NAT.
I'm not sure about the NetGear router's capabilities. Certainly you could set it up to use port forwarding for port 113. If you can make additional firewall rules you could place a rule that refused anything incoming on port 113. Another tactic would be to use Tiger's built in firewall and put it in stealth mode. It will not respond to any inquiries on port 113 or otherwise if a hacker does get past the router and somehow finds your computer and guesses it's password as well. Double the protection, double the fun.
Matt -
RV042 opens ports 80 and 443 when HTTPS enabled in firewall
I recently installed an RV042 v1.1 vpn router (older hardware revision but using the latest available firmware 1.3.12.19-tm) and set up VPN access with the QuickVPN client. QuickVPN requires that the HTTPS setting be enabled under the Firewall options, so I did. I then scanned our static IP with grc.com's ShieldsUP! to check for open or non-stealthed ports and discovered that ports 80 and 443 show as wide open, while port 113 is closed but not stealthed. If I disable the HTTPS setting under Firewall, then ports 80 and 443 become stealthed. Is there any way to use QuickVPN and keep these ports stealthed?
Thank you!
TimSolved this by forwarding ports 80, 113 and 443 to an unused internal IP address. Tested QuickVPN after doing this and am still able to log on AND have a full stealth rating from ShieldsUP!
-
Title says it all:
How do I use a NORMAL headset (dual 3.5mm) on my new Macbook pro retina? No usb ports available and headset buddy adapter doesn't work.Hi Auracles1,
Here's a pretty discussion regarding wireless printing with this device and a Mac.
http://h30434.www3.hp.com/t5/Printer-networking-and-wireless/HP-Officejet-6500-E 709n-wireless-issue/m-p/258853
I have a similar OfficeJet and it was a multi-step process. (1) Install printer drivers on the machine, (2) Add the printer queue in print & fax, (3) Run the "setup wizard" from the disc for wireless printing. -
How do I connect my Cinema Display to my MacBook Pro??? I have the dvi to vga display port thing and nothing works.
What model (year) MacBook Pro? Depending on the model, it may have DVI, mini DisplayPort, Thunderbolt, or HDMI video connectors.
What model (yeasr) and size (17", 20". 22" ...) display. Depending on the model, it may have ADC, singlre-link DVI, dual-link DVI, or Mini DisplayPort connectors. -
How can I set up a WD My Cloud with my Airport Extreme - I can't get it to open ports 80 and 443?
For remote internet access to the WD My Cloud Mirror, I have been advised that ports 80 and 443 must be open in order to reach the WDMyCloudMirror. My Motorola Gateway (Surfboard SB6141) is connected directly to my Airport Extreme (WAN port) which is in turn connected to the WDMyCloudMirror (all by ethernet cables). I do not have FULL instructions on how to properly manually configure the Airport Extreme to open the ports. I have tried an earlier posting which provides many of the steps, but not all of the required information is included (how to determinge the IP address to be assigned, etc.). I did the best I could with the information given, but the test using "YouGetSignal" showed the ports as still closed and attemps to reach the WDMyCloudMirror by the internet failed as well (of course). The WDMyCloudMirror has enough Apple "stuff" included in it (software, I suspect) that an Apple legal acceptance is required for its set-up, yet Western Digital Tecnical Support is unable (or unwilling?) to help with this aspect of its configuration required to work within the Airport Extreme environment. I have returned the WD My Cloud Mirror to Amazon as "not able to work", but I have not given up the hope that I can eventually get the ports open so that I can get this cloud device, or one similar, to permit remote internet access.
Port Forwarding.....or Port Mapping....as Apple calls it is a difficult and complex configuration method for most users. Because there are so many variables involved in this type of setup, it is not possible to provide a step by step guide that will work for everyone with all devices.
It is possible that a setup guide exists for the the WD drive and AirPort Extreme, but you will have to go looking for it on the Internet. Even if you find one, it may not be tailored to your specific situation or needs.
Sometimes, you can do everything right....at least according to someone's article or "how to" guide, and things still will not work correctly.
In situations like this, when you really don't know what to do, you need to enlist the aid of an IT pro, who will know what to do based on your particular products and unique circumstances. Sometimes....they won't be able to get things working either due to particular circumstances.
But, before you do this, I would strongly recommend that you use a Static IP address for your Internet connection with your ISP. If you do not have this now, contact them to ask them if they offer this type of connection. Expect to pay more for this type of service, of course. -
I just restored my 13" MBP i5 at the apple store to the newest version of Lion after issues with a previous Time Machine backup from Snow Leopard- this time I created a new account and just ported files and folders, and now MS Office doesn't work.
^^ that's the main problem. Here's the full history.
I bought a new 13" i5 MBP, early 2011 edition. I had an old white Macbook 2.14 ghz core2duo on Snow Leopard. I attempted to port over my time machine backup, but encountered problems in that my User was inaccessible from the new computer after the import finished, and I had to go in and change the root password, etc, and for some reason or another, I couldn't install any programs at all from that administrator's account. By "couldn't" I mean I could install them, but upon installation they would never boot. So, I took it to the apple store and did a clean install from the most up to date Lion OSX. Then, I created a brand new admin account, instead of trying to import the old one, and things seemed great. Then, I just imported my old files from the TM backup, but not any system settings, permissions, or user data. Just my Docs, pics, vids, apps, and itunes stuff.
Here's where things get weird again. I imported this stuff under the name "old", but all of these folders have a red negative sign on them, marking them as restricted. So, from my main admin account, I cannot even peruse these folders. Since I didn't import user data, I can't sign in to the "old" account to change permissions. I already tried to change the permissions from system preferences, but that didn't change anything. And now, for whatever reason, of all the apps that were imported then, MS Office is the only set of apps that does not work. When I click on it, it just says there was a problem and asks if I'd like to send a report to apple. I tried reinstalling it to no avail. I'm an English student, so i really need access to Word. Can anyone help? The Apple store is a major detour for me and would like to fix this issue myself.Most likely you have Office 2004 which are PPC-only applications and will not work in Lion. Upgrade to Office 2011. Other alternatives are:
Apple's iWork suite (Pages, Numbers, and Keynote.)
Open Office (Office 2007-like suite compatible with OS X.)
NeoOffice (similar to Open Office.)
LibreOffice (a new direction for the Open Office suite.) -
The cord works, theusb port works, and when I plug my ipod into the wall charger it works, but when I plug it into the computer, nothing, not even charging. P.S. it worked before I updated it to iOS 6.1.5
You do have iTunes 10.7 or later on the computer, right?
See:
iOS: Device not recognized in iTunes for Windows
I would start with
Removing and reinstalling iTunes and other software components for Windows Vista, Windows 7, or Windows 8
or
Removing and Reinstalling iTunes, QuickTime, and other software components for Windows XP
Run this to help if it identifies the cause
iTunes for Windows: Device Sync Tests
Have you tried on another computer to help determine if you have a computer or iPod problem? -
Windows 2008 Server contacting multiple public IP on port 80 and 443
Windows 2008 Server contacting multiple public IP on port 80 and 443
Source : Microsoft Lync 2010
Port : 80
Destination : unknown.prolexic.com
Source : Internet Explorer
Port : 80
Destination :a-0001.a-msedge.net
Source : Internet Explorer
Port : 443
Destination :204.79.197.200
Is this virus? how to stop the same?Org name of the IP shows Microsoft Corporation
Since its hits on firewall , i will have to stop the same
but not sure for what its being contacted to these Ips
OrgName: Microsoft Corporation -
How can I write to port C and read from port A&B simultaneously using 6503 DIO-24
I attempting to read from Port A and B which are grouped together and at the same time I want to write to Port C. The problem I having now is that every time I want to read from Port A and B, Port C seems to be effected. I have only used the easy dio's vi this may be the root of my prblem
Hello,
You will need to use the advanced digital VIs to accomplish what you are trying to do.
The Easy DIO VI's are simply a combination of two DIO advanced VI, so you will use the same two advanced VI with a little different calling method. We want to call both PORT Config VI first to configure two ports for read and one port for write. Then we can simply read and write to the ports as desired, perhaps in a loop.
The best place to start would be to look at the LabVIEW examples for Digital Input and Output operations. In LabVIEW, go to Search Examples then under I/O interfaces select DAQ (or Data Acquisition)-> Digital Input and Output->Immediate Digital Input and Output. From her you will want to look at the examples under the 8255 chip which is the chip on
the DIO-24. I would recommend looking at Read from two digtial ports and the Write to one digital port VI's.
From here you will simply need to combine the two together. One note: you will want to make sure that both port config VI are called before either Port Read or Port Write VIs. -
My MBP is port scanning, and I dont know why!
Ever since this Tuesday at the office (we're all running macs) the internet keeps going down.
I called the ISP, they told me that one of the machines looks like it has a virus running, one of them is port scanning- and that overflowed the router and froze it.
Turns out its my personal MacBook Pro that matches the IP address he gave me. I was FTP'd into a server and downloading a website for backup.
He said something like ports 4400- 58,000 were being scanned sequentially and that it seemed like there was a virus on the computer, I was shocked- and told him that we were all on macs. Perhaps the FTP client (called "fetch") failed to connect to one port and tried another and another ect. But, the tech guy also said that it wasn't on FTP protocol.
Today I've been working on securing my machine. I stopped using the Wi-fi, turned on my firewall ( I know, bad idea to not have it on ) and installed ClamXav and Little Snitch.
Perhaps I have some kind of malware? Is it too late?
Help!Isp's always blame things on the mac when they don't know why something is happening to their network.
You could launch Activity monitor and look at all the processes that are running. Sort it my cpu cycles. There could be an application stuck in update mode or one trying to phone home..like adobe updater. -
I keep getting error 3004 when i try restoring and updateing my iphone 4 to iOS 7 i did everything 1. flushed dns 2. edited hosts 3. updated itunes and downloaded new one 4. switched usb ports 5. disabled antivirus 6. enabled ports 80 and 443 7. disabled firewall 8. even tryed putting mobile in DFU mode to restore it not of this worked so please help me
please replyyy i'm stuck on this like whole week
-
I started a support case with Microsoft to help me with raising the our domain Forest level because i received a message stating that there were Windows 2000 PDC still listed in the database. These PDCs were removed years ago. The tech saw all of the problems
i was having with domain replication so that is where he started. running the MS PortQryUI shows that ports 3268 and 3269 are not listening, (TCP port 3268 (unknown service): NOT LISTENING) when run FROM a Child domain controller against the Parent
Domain controller. Between the 2 Child domain controllers these ports are listening.
The Windows firewall is not running on any of the controllers, i removed a virus protect client from all of the servers, although i didn't enable the firewall there either, but these ports are still not listening on the Parent DC.
I need help debugging this. I am not very familiar with network sniffers so if i need to run one i'll need some guidance. This DC only has one NIC, all IP addresses are static, all servers are setup like this. All servers are in the same subnet, on the same
lan, on the same cisco switch, there shouldn't be anything blocking this port from starting.
I looked over other post that show this same problem, but they don't give a solution. If i am not using the Windows firewall why wouldn't these ports be open?
Any ideas? web searches are all over the map on trying to find the reason for this.
BobbyTry running the below command on the DCs that you think have the ports blocked or all the DCs.
netdiag /test:ipsec /debug > c:\dcname-ipseclog.log
Open that from the C drive and see if there is anything saying block or filters.
Also, just for kicks have you disabled the firewall service on the DCs?
And just for kicks have you tried enabling firewalls ports on all the DCs? The KB is below
http://support.microsoft.com/kb/555381/en-us
Step 1 - netdiag results
Step 2 - disable the firewall service on all DCs if step 1 was negative
Step 3 - enable the firewalls on all DCs per KB 555381 if step 2 doesn't work
Let us know how it goes!
If it answered your question, remember to “Mark as Answer”.
If you found this post helpful, please “Vote as Helpful”.
Postings are provided “AS IS” with no warranties, and confers no rights.
Active Directory: Ultimate Reading Collection -
Why can't I connect Mail on ports 25 and 110?
Loaded the security update the other day, and two days later I can't download or receive email (access to the Internet is fine through our router). But it didn't happen immediately, and the ability to send mail disappeared after the receiving of email stopped.
The messages are "The server "smtp.surfcity.net" cannot be contacted on port 25" and "The server "pop3.surcity.net" cannot be contacted on port 110."
Connection Doctor says I'm connecting to the Internet, but the "Assist Me" button is inactive (greyed out) and both red lights are on.
I have not changed any info in my account, which seems fine. What I have tried (unsuccessful results) is to unplug the router and connect directly to the DLS modem, thus eliminating the old router as the problem; turned off both the router and Mac firewalls; called my ISP tech support (not a Mac-friendly guy); tried to create a new (duplicate) account (but the pop3 server couldn't be accessed, so I didn't get far); repaired permissions; defragged the hard drive of my brand-new Mini.
The email is totally accessible on the Internet, but I can't get Mail and the ISP's system to communicate.
I'm an intermediate operator in most cases, but routers and servers are an area I'm not familiar with. Any strategies?
Mac Mini 80G HD Superdrive Mac OS X (10.4.9) LaCie 250 G Firewire hard driveThanks for all your help -- I already had tried what David suggested, and the telnet trick is a good one I'll remember.
The dufus tech support guy was too lazy to check his own servers, which needed resetting. I arrived at this conclusion on Saturday night after eliminating the router and both computers as culprits, and the ISP -- Surfcity is normally outstanding, so this laziness was a true surprise -- confirmed it on Monday, when my email began working again.
Sorry to have bothered you guys for naught -- but I learned something, which was good. Thanks again.
Larry
Maybe you are looking for
-
I want to cancel a subscription. I follow the standard instructions to go to App Store --> Featured-->Scroll to Bottom-->Tap my Apple ID or sign-in. The problem is my Apple ID is shown, but it is greyed out. So, when I tap it nothing happens. I am on
-
My laptop has been stole. I have bought a new one but I can't download the files (homemovies, articles, presentations) from my ipad to the new laptop so I can share with my daughters in their mini ipads. Any ideas? I am working with Windows 8
-
Horizontal bars with SD movies
So...I'm a new ATV (2nd gen) user. We recently moved and I'm just not a 100% sure that everything is setup the way it's supposed to be... When I rent movies on my ATV, I often have a bar at the top and bottom when viewing the movie on my HDTV (Samsun
-
Hello, today I made a back up of my documents et I discovered an xml files related to this backup. I have also found some private files.xml. I don't know waht I have done to activate this operation. But I would like to know how to stop it. I don't ha
-
Hi All, Right now we have a interesting workflow problem. we applied support pack in the month of September after that forwarded work items are getting disppered from the users inbox If user A forwarded the work item to User B he is getting it, But i