Hi,
Normally some router default is opening of some ports like http, and ftp which may be made more secured , by portforwarding the ports to unused devices ip, in one"s pc. This is the solution given by leading av, and i do not know, how to know the ips of the unused devices on my computer.
I don't think any router would ever have a default to forward a port. The factory default should always be no forwarding at all.
In fact, that's a very poor advice. If a port forwarding is not used, it must be deleted. Forwarding to an unused IP has no consequences really, as well as forwarding to a port not being listening on, but deleting just prevents falling it into that trap if that IP ever gets used.
Hi, Very thought full reply.
But it is being given as a solution , by a av program as a way out of leaks in router attacks symptoms.
I want to know the method of how to find out the unused device ip. what is the concept of port forwarding then? Normally here is the problem of finding the unused device ip.
Normally some ports are open, even though it is securely opened default. This gives the security hole in the router settings to communicate the program thro that vulnerable port.
So, if it is diverted to unknown ip, then it will be safe. This is the thought of the advice.
Normally people think that modem as a kind of electrical hardware , but it is not, it is a kind of gateway to your computer access.
My post refers that that "av" is giving poor advice. If you don't use port forwarding, leave it disabled, I've never heard of forwarding into an empty IP, and certainly not forwarding at all is always a preferable option. And given that it's the default of routers, leaving it alone is preferable. No idea why it's complaining, what's the exact message?
Start by reading The Wikipedia article about it, but as a quick introduction, it's opening a port in a router to allow connections from outside (ie internet) to your local network, so that people on the outside can contact you instead of you contating external servers.
Normally, NO ports are open on a router. The default configuration is not forwarding anything. What makes you think that there is a "security hole" in a router? And if it were really open, closing it is a better option rather than diverting into a black hole.
Once again, that advice is bad practice.
If you really want to follow this poor advice, you could perform a network scan, I use this program for this:
https://www.softperfect.com/products/networkscanner/
It list all the devices on your local network. From that list, every IP not there is unused. Take into accout the DHCP settings, as any address in that range can be eventually used at any time.
That's very true, in fact a router is a full computer in its own, with its own (minimalist) OS and software running, that works as a sort of middleman between internet and your local network.
Hi, aleja
Excellent bit of advice. I will read the wikipedia later. All other advice sound good. When i checked my router, the wan port was default configured to access ping requests both for ipv4 and ipv6. But when i checked with grc.com shield up, it shows as an alert and i just removed, by clicking the delete button next to it. Recheck with grc.com now shows perfect health and stealth. Will it do any harm. please
Regarding av poor advice, it was avast advice, when one scan network scan and come up with vulnerabilities list. It shows, port 80 http and port 21, as vulnerable and anybody could hack the router password and steal the data. It gives the portforwarding as above as a solution to this, Hence i asked for the method.
It is not known, when grc.com shows as all ports are stealthy, the avast shows the two ports as vulnerable. It shows, those as icons as well. I think that there are about 60000 ports and some ports are not needed to be looked in to those.
But 80 port and 21 port are important ports for http and ftp traffic. How they are shown as weak in avast scan is still a mystery to me. Stealth means, closed. Is it correct?
WHEN I was replying to the post in this forum, suddenly the page redirected to a unknown page, commercial, and i thought that my reply got cancelled. I closed the commercial browser and then i could see that the reply sent safely.
Would this redirect mean that there is something that is redirecting. Once i closed the browser, windows defender alerted about a keylog threat, monitoring tool/win32/actualspy alert, and my browsing hangs and i have to do so much tricks to regain my pc. Windows defender removed but it prompted the same threat again at few minutes interval. May be that these directs program use our router ports to redirect. or is it because of ping enabled wan in the router
Quote