I recently had a security scan done on a DIR 655 and the report came back saying PORT 111 (Unix RPC Service) should not be listening for external connections. I've looked through every setting but can't find where this service is enabled (or can be altered) -- aany guidance on this port/service?
url...I discovered that it would be possible to be protected from portscan, i mean when someone scan our nework/host from outside, the attacker will see all the 65535 ports as "open" (in that way it will be more difficult for an attacker to perform customized attacks...)So I have follow the setup in that link: policy-map global_policy class class-defaults set connection embryonic-conn-max 15 per-client-embryonic-max 3 service-policy global_policy global . The problem is that I don't have the exepected result..If i do a portscan over Internet from an external host to my hosts the portscan is successfully working and I can view my open ports...I have also tried to set this through a "match" in an access-list but without any sucess.
Since a few days, when I go on Web with my cable connection, the pages of sites stay on a blank page and that does not connect. Having made diagnose, I had the following message:The distant ring road(peripheral) or the resource does not accept the connection.The ring road(peripheral) or the resource [URL] is not configured to accept the connections on the port " Web Service (HTTP) ".I phoned at my FAI ( Videotron) and having discussed for a long time, it happened at the conclusion that it was a problem of router (when I connect the computer directly on the modem, that works very well).Of an other one quoted(esteemed), a connection Wireless telegraphy works with no problem at all, fortunately because I shall not be here.I am to go to my router D-Link Dir-835 and I returned to the former(old) protection(saving) of the configuration. And now that re-works again. But the enjoyment was short-lived because this morning, the problem returned.What do you think about it? I Should make a reset of my router even if it means re-configuring everything again?
Foreach computer I need to go and configure the browser proxy settings and some people are getting smart and turn it to automatic configuration again.
So what i want to achieve is to have my DIR-655 to route all the HTTP/port 80 traffic to the proxy server. That way it is transparent and then it is not needed to configure each computers browser settings.
I am pretty new to this and the router configurations.
The proxy server works fine if i configure the browser manually.
Ages ago I was shadowing someone making a change on the network. I cannot remember which spanning tree version was running and cannot remember the config of any port either. What I do remember is that every switch port on the 2960 switch went orange and an outage occured, where the ports went into listening / learning mode. I assume that the STP was just the default ieee 802.1D.
I've several production Catalyst switches that are listening on the same IPv4 and IPv6 ports. The problem is I don't want the switches listening on the IPv6 ports.[code] How to shut down these listening ports?I also have a few production switches listening on UDP/10000 and I cannot determine why this port is listening. [code] I've seen where UDP/10000 is Network Data Management Protocol and is related to Storage networks ###, but I've also seen where UDP/10000 is the default port for IPSEC data.I don't believe UDP/10000 is related to either NDMP or IPSEC data, though I could be very wrong.
In my LAN environment, I'm using two cisco SG300-10 switches. Both switches are connected by GE10 on both switches, where both ports are set to trunk.Now on all ports 1-9 on both switches, I'm having client computers attached. So I set ports 1-9 to "access" mode.All interfaces on any switch is left in default vlan.
Is it normal that I see all traffic from all connected devices on any port where I connect a listening device?What I'd like to achieve is, that only traffic that is meant for a specific workstation is actually forwarded to this workstation. By now it seems that I get all the traffic from everybody.
We have ASA5520 and we want to configure a VPN IPSEC profile so that a partner of ours can access only a server and only on HTTP port.I've tried configuring split tunneling with an Extended ACL but probably I'm missing something. I just configured the ACL so that it included any source to our server's IP on HTTP port but when testing, it didn't work.
However, if I configure a Standard ACL on the split tunneling I can access the server and all the services it provides.Do you know if I'm missing anything on the Extended ACL configuration?
I recently bought a EA6500 to replace a EA4500 (defective). Prior to the EA4500 I had a 160N which I now use as a WAP for 801.11G devices. I thought the 4500 was good from the media server functions it offered.However since installing the 6500 I noticed:
1. I have port forwarding for http to a web server. It works fine from machines on the outside but from my local subnet 192.168.1.x I can't access the web server (I can't even ping the external address - and yes I turned the anonymous filter off). I am not using ddns and I have a static ip address (cable modem connected) to the outside world.
I need getting access to my http server. I have a host name that I configured to point to my IPS IP address. Port 80 is enabled on my server, but I can't seem to get access it from my web address [code]
We are testing a Zone Based FW config since 1month, everything run smooth but we're having problem ( big slow speed access ) when a user try to reach a website on a non-standard port ( 8080 in that case ). All the trafic stay in our LAN, using a IPSEC/EZVPN connection between the 2 sites.As soon as I have disabled the Zone Based FW, the speed was much better.
I'm sure I'm missing a parameter to fix that problem but I tried many different options and I didn't find anything yet. All the routers are Cisco 1811 running adv IP Services 15.1.2.T1 IOS.A port-map has been created to map the port 8080 to the HTTP protocol for the inspection.The PC will have an IP address in the 10.2.2.x/24 and will access a server on 10.2.3.x/24, both devices are part of the zone private in each site/LAN.All the access between sites are managed by an ASA; the IPSEC/EZVPN peer.Little summary, it's gonna be something like : SiteA with a PC on private zone then on public zone for the EZVPN to SiteB on public zone and then private zone to access the server in the LAN.
Why the below configuration does not work? BGP exchanges routes without a problem all the time the distribute list is removed from the config. When I apply the distribute list it blocks all routes, not just those intended in the prefix list.
my client wants to make videoconference call thorugh Microsoft Office Communicator, this should be operating between host from one site to another one, but we already configured some rules in the firewalls, and making some test I see that the videoconference use dynamic ports (1024 to 65535) and if we let to operate the videoconference we should remove all the rules in the firewall and that's not the point.
The Port 80 port fowarding stops functioning after a few hours and requires the router to be rebooted to start forwarding again. The firmeware is the latest 1.0.04 Build 7. I require it to operate reliably for many days without intervention. I assume that it is a port forwarding problem because I can access the IP on my network from within my network even when I can't access it from outside my network. I am using the correct IP addresses as it sometimes works OK. A characteristic is that when I can't access the page it loads as completely blank white with no error message.
I am testing out some inspection options on an ASA 5505, and I am running into a situation in which applying a http inspection is dropping all outbound http traffic. I get a "protocol violation" error in the logs.
Here is the setup: I'm not sure why the web traffic is getting dropped.
policy-map type inspect dns preset_dns_map parameters message-length maximum client auto
As the subject says, I've hooked up a Samsung BD player to a BEFSR41 router. The router has the current firmware version. When I run the connection test for the player, the local connection is good but the Internet connection fails and the message is " The HTTP port is disabled."
I've searched high and low for a solution to no avail. I did searches on the forum and couldn't find anything. As a test, I connected the BD player directly to the DSL modem and the Internet connection worked perfectly so it appears that the blockage is within the router.
I've serched through the router setup and have changed most settings to try and find something that would work. Nothing worked so I have returned my setup to its original state.
Firmware version 22.214.171.124 STAR 9202 Chipset 64 MB DRAM 8MB Flash DOS, Block WAN Rq, Remote mgmt all OFF IPSec Tunnel none used
Every day or so the Router becomes unresponsive to the HTTP mgmt interface, as well as it no longer offers DHCP services.then this happens the only remedy is to power reboot.
Everything comes back online just fine, however, the LOGS are initilaized so no data to figure out what`s going on.My next step is to setuo a syslog server and have the logs copied out.( No, I have no Torrents running at all, but I do have several devices like AppleTV, PS3s etc that run streaming Video plus I have the SPA3102 )
Sometimes when I enable a switchport I see the port goes to Blocking mode first, not sure if it stays in that mode for the 20 secs, I think sometimes is far less than 20 sec. But I have seen too, that when I enable a port it goes directly to Listening mode. When does a switchport goes to the Blocking mode first, mode that all the books I have read say it should go when you enable a port, and when it goes to Listening mode directly?
Goal: To forward requests over port 80 from my LAN to an external server on a specific port, that is I would like to forward all requests over http to an external proxy.
I know that this can be done with IP-Tables, but I would like to do the same thing with my D-Link. I have looked at Advanced --> Routing, but that seems to be specifically for inbound requests. I want to do this for outbound requests. This can be achieved with the D-Link DIR-655?
I have two Windows Boxes connected to RV042 ; each has its own static IP assigned to it and each runs bunch of virtual machines , for which I had configured port forwarding .My hosting company claims that my server(s) are listening on IP 192.168.0.1 on a public interface (i.e., one that uplinks to their network). They see this same IP on two different MACs my uplink interface. I am not really sure how it is possible since 192.168.0.1 was assigned to router itself.
When I do an NMAP scan against my ASA 5505 on it's internal interface's IP address, it appears to be listening on all TCP ports. If I do it from across a VPN tunnel, the ports show as open according to NMAP, if I do the scan from the local subnet they show up as unknown. I'm running 8.0.4 code on this ASA.
Model : TD-W8901G Hardware Version : V3 Firmware Version : 3.0.1 Build 100901 Rel.23594 ISP : Ttnet
My web browsing/surfing speed decreases when I'm transferring files between other computers which are connected to this modem, and when a torrent client is downloading from 20+ seeds. I want to give the HTTP connections (port 80) the highest priority possible, so that my connection wouldn't delay when non-HTTP connections are active.The interface of the modem related to QoS settings are as below:What QoS settings should I enter (what rule(s) should I define) for giving HTTP protocol higher priority?
Information about my environment:
Modem product ID: TP-LINK TD-8901G Modem firmware version: 3.0.1 Build 100901 Rel.23594 Modem hardware version: 3.1 My OS: Windows 7 Ultimate x64 SP1 My physical port: Enet1 (Eternet #1) My local IP: 192.168.1.2 My torrent port: 5002 IP of the computer I'm transferring files between: 192.168.1.4 Physical port of the computer I'm transferring files between: Enet 2 (Eternet #2)
Region : Italy Model : TD-W8968 Hardware Version : V1 Firmwae Version : latest ISP : telecom italia business on ipatm
How to Forward an external wan port like 49150 to lan ip on port 22?In the control pannel I can set only one port , and this port will be the same where the connection will be router to the lan ip ,therefore If I set the port 22 , the connection will be natted to the 22, but how to set a different external port to a specified different lan ip port?
Region : UnitedKingdom Model : TD-W8970 Hardware Version : V1 Firmware Version : 0.6.0 0.11 v000c.0 Build 121203 Rel.46289n ISP : Virgin Media
Is there any way of forwarding an external port to a different internal port on the TD-8970 ?I saw a question posed on an Australian forum implying that it might be provided in a later firmware release.Our TD- 8970 has replaced a previous NetGear WAG 320N which had this facility, and is useful to provide access to multiple machines without having to modify each individually to use a different port.
I am having an issue opening a port (4040) on the 655 for my Fedora-based subsonic server. Inside the LAN, I can see the device from other peer machines, so I am confident the port is open and listening. However, I can't seem to get to the machine-port from outside/internet.
I have tried Virtual Server and Port Forwarding with single port. The server has a stactic IP which I've included in the DHCP range and outside the range. I have a DSL connection (AT&T), modem only. I have updated firmware. I have exhausted the Subsonic community's knowledge, everything points to the router, but all the settings seem correct. What am I missing? Is if possible there is a defect in the router? (don't laugh). Is there a way to trace a request to that port to see where it is hanging?
I have a DIR-655 Rev B, in a typical cascaded config: modem > dir-555 > switches & devices, etc.One of the four dir-655 ports is connected to a cheap-o Belink Wifi router which I use as an access point (I only use this because there's one device that only supports WEP). I was debugging a WiFi issue and I pulled the plug on this Belkin just to get it out of the picture. Well, when I did that, EVERYTHING that was connected through the DIR-655 lost connection. (Well, all the wired stuff anyway- not sure about WiFi devices through the DIR-655). I noticed that the port link light for the powered-off device stayed on on the DIR-655. When I unplugged the cable from the DIR-655, everything went back to normal.
So what I'm trying to figure out now is, is this a DIR-655 issue, or is it something screwy with the Belkin? Or Both? I've got to assume that there's some inherent flaw in the DIR-655 that allows something connected to a port to screw up everything that it's hosting.