[oclug] [Fwd: [ #DMU-33617-954]: Support Request]

Mark Harrison Mark at ascentium.co.uk
Tue Apr 27 06:42:10 EDT 2004 

It should only be open in one direction...

... specifically it should allow machines inside your network to access port
443 on machines outside.

It should NOT be open the other way round.

I think that the linksys guy has misunderstood the question :-)

M.

----- Original Message ----- 
From: "Bob Lockie" <bjlockie at lockie.ca>
To: "OCLUG Mailing List" <oclug at lists.oclug.on.ca>
Sent: Tuesday, April 27, 2004 11:28 AM
Subject: [oclug] [Fwd: [ #DMU-33617-954]: Support Request]


>
> Maybe somebody cal explain to me why port 443 needs to be open for
> external applications to work?
> Shouldn't the router open any needed ports when a connection is
> initiated from inside, otherwise, block everything?
> The other ports are forwarded to servers that I am running.
>
>
> -------- Original Message --------
> Subject: [ #DMU-33617-954]: Support Request
> Date: Tue, 27 Apr 04 02:44:09 -0700
> From: Support at linksys.com <support at linksys.com>
> Reply-To: Support at linksys.com <support at linksys.com>
> To: bjlockie at lockie.ca
> References: <SBCSRV01v7FDwfCrbre00003920 at www.linksys.com>
>
> Dear Mr. Lockie,
>
> Thank you for contacting Linksys Customer Support.
>
> With regard to your concern, the port 443 is open for ssl or "secured
> site location" so it is open because you might be accessing secured
> sites on the internet.
>
> You can close it if you want by forwarding that specific port to a
> non-existing ip address.
>
> If you have further questions, please contact us at (800) 326-7114 or
> send us an eMail at support at linksys.com so that we may further assist
> you.  Please use this phone number given as reference for future support
> calls.
>
>
>
>
> Sincerely,
>
> Ryan Oliver Pili
> Linksys &#8211; A Division of Cisco Systems, Inc.
> Senior Product Support Specialist
> 1-800-326-7114
> support at linksys.com
>
>
> On Sun, 25 Apr 2004 13:58:32 -0700, contactsupportpage at cisco.com wrote:
> > Country: Canada
> > First Name: Bob
> > Last Name: Lockie
> > Email: bjlockie at lockie.ca
> > Phone #: 705-932-1550
> > Product: WRT54G-Wireless-G Broadband Router v1.1
> > ISP: Nexicom
> > OS: Linux
> > Internet Connection: DSL
> > Problem Type: Software Settings
> > Additional Products Related to Problem:
> > The Question: I have a Linksys WRT54G that has https open but I have
> > "Administration/Remote Management" set to "Disable" in the management.
> > I have the 2.02.7 firmware installed.
> > Any ideas?
> >
> > # nmap -P0 gw
> >
> > Starting nmap 3.45 ( http://www.insecure.org/nmap/ ) at 2004-04-25 13:23
> > EDT
> > Interesting ports on gw (192.168.1.110):
> > (The 1652 ports scanned but not shown below are in state: closed)
> > PORT    STATE SERVICE
> > 22/tcp  open  ssh
> > 25/tcp  open  smtp
> > 53/tcp  open  domain
> > 80/tcp  open  http
> > 110/tcp open  pop-3
> >
> > Nmap run completed -- 1 IP address (1 host up) scanned in 1.316 seconds
> >
> >
> > # nmap -P0  216.168.107.123
> >
> > Starting nmap 3.45 ( http://www.insecure.org/nmap/ ) at 2004-04-25 13:24
> > EDT
> > Interesting ports on nexredback-216-168-107-123.nexicom.net
> > (216.168.107.123):
> > (The 1652 ports scanned but not shown below are in state: closed)
> > PORT    STATE SERVICE
> > 22/tcp  open  ssh
> > 25/tcp  open  smtp
> > 53/tcp  open  domain
> > 80/tcp  open  http
> > 443/tcp open  https
> >
> > Nmap run completed -- 1 IP address (1 host up) scanned in 2.359 seconds
> >
> > There shouldn't be a 443 port on the external IP.
>
>
>
>
>
>
> -- 
> --------------------------------------------
> Sent with Mozilla and GNU/Linux software.
> This desktop is powered by an AMD processor.
> -- 
> OCLUG general discussion list
> OCLUG at lists.oclug.on.ca
> http://www.oclug.on.ca/mailman/listinfo/oclug
>
>

More information about the OCLUG mailing list