Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Blocking ports with firewall software ?

30 May 2015   #1
EJGlass

Win 7 64bit
 
 
Blocking ports with firewall software ?

Hi
I have found someone using the UDP port 1900 on a open network at the public library. They get into my machine and change settings like the sound settings and so on.

Since they only seem to be using port 1900 is it possible to block this port specifically or should I just block all the UDP ports(the UDP protocol seems to be used by Steam and one game that I don't really play anymore)

What effects of blocking all the UDP ports on a windows 7 64 bit system would there be?
Does windows need this protocol to be open for system use? (I don't see anything "system" related coming up in a network sniffing program I am trying out)

I use AVG internet security and it seems to be letting this one person in on port 1900.

Thanks


My System SpecsSystem Spec
.
30 May 2015   #2
Alejandro85

Windows 7 Ultimate x64
 
 

Why do you think "someone" is using a specific port? I find very difficult to think that, just because a port is open, and even then, that doesn't gives access to change things like sound settings, making me think there is something else roaming around.

Anyway, an open port is irrelevant without a program using it, either listening for connections or using it to initiate them. Particularly about UDP 1900, it's used for SSDP UPnP (look here for reference), which is known to be a vulnerable protocol that should be always disabled (Windows enables this by default). You may want to check the system services and disable "SSDP discovery" to prevent any exploits on it from other programs in your computer.

About disabling all UDP, don't do that, ever.
Several critical protocols run over UDP, of particular importance being DHCP (port 68) and DNS (port 53). DHCP lets you get an IP address automatically, which is crucual on public networks and sometimes in your own too if you don't know a bit of network management. Without DNS, you can't resolve website addresses, breaking 99% of internet. Some other programs may also use UDP for their own purposes (notably games, but many others too).

The proper way to use a firewall would be to block everything by default, but selectively unblock ports/programs that you know you need. At least some UDP and TCP ports must be open for normal operation.
My System SpecsSystem Spec
31 May 2015   #3
EJGlass

Win 7 64bit
 
 

Hi
I don't just "think" this I have seen it while using "Network Traffic view". It lists port 1900 for only up to 1 minute. Then there's the problem which got me to use the public library internet instead of a home base comcast one. I have some small minded children for roomies that had hooked a spiffy little computer up inbetween my outside cable hook and the internet hookup on the end of the house. I watched a roomy actually change the settings on my sound cards levels taking them to all over the board instead of where I had placed them.

If there is a program on the system that has been installed by the roomies when I last setup the machine it has not been able to be found by malwarebytes or any antivirus program to date. (is there a way to find such programs without paying some computer shop to find them)?

Ok SSDP is now disabled, It was started but it's previous state was manual.

So with the firewall software I should have "Interactive" selected instead of automatic?

Thanks for your help.

But I still think the human who is giving me trouble can see my system because of a port being open or not completely "stealthed" from the internet. Now port 1900 says it is stealthed but why it is opening and "connecting" is beyond me. Thats why I would like to add it to AVG to block it from being used but if it is going to make things more dificult for me in the long run...

Quote   Quote: Originally Posted by Alejandro85 View Post
Why do you think "someone" is using a specific port? I find very difficult to think that, just because a port is open, and even then, that doesn't gives access to change things like sound settings, making me think there is something else roaming around.

Anyway, an open port is irrelevant without a program using it, either listening for connections or using it to initiate them. Particularly about UDP 1900, it's used for SSDP UPnP (look here for reference), which is known to be a vulnerable protocol that should be always disabled (Windows enables this by default). You may want to check the system services and disable "SSDP discovery" to prevent any exploits on it from other programs in your computer.

About disabling all UDP, don't do that, ever.
Several critical protocols run over UDP, of particular importance being DHCP (port 68) and DNS (port 53). DHCP lets you get an IP address automatically, which is crucual on public networks and sometimes in your own too if you don't know a bit of network management. Without DNS, you can't resolve website addresses, breaking 99% of internet. Some other programs may also use UDP for their own purposes (notably games, but many others too).

The proper way to use a firewall would be to block everything by default, but selectively unblock ports/programs that you know you need. At least some UDP and TCP ports must be open for normal operation.
My System SpecsSystem Spec
.

02 Jun 2015   #4
EJGlass

Win 7 64bit
 
 

I have found another program that solved this, and showed me that there are two things happening.

1. There was a person digging up info about me through some software(could not be seen) and having that sent to his email(phishing). blocking port 1900 does not seem to have any effects on other programs except winamp(now disabled).

2. Winamp was also attempting to use port 1900 and 1901 to connect and get info on new version of itself. I have now disabled this feature in winamp.
My System SpecsSystem Spec
Reply

 Blocking ports with firewall software ?




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Windows firewall blocking .exe file even after firewall is disabled
Hey everyone, This is my first post, and first time I've not been able to solve my problem by searching previous posts...so hopefully someone can help me out. I'm trying to install a downloaded .exe file, and Windows firewall is blocking it regardless of whether the firewall is active or not; the...
System Security
Please Help Firewall Blocking.
Hello. My firewall blocked games servers then I go to Control Panel\All Control Panel Items\Windows Firewall Then I go Allow a program or feature throuth Windows then: http://img825.imageshack.us/img825/755/firewallm.png But anyway blocking my Counter-Strike servers...
System Security
Help on blocking common trojan ports
hello thans for reading! first I can't belive I didn't find answer on my question after googling for about 1 hour, I'm crazy allready and need your professional help :eek: here is my problem: for this example I've downloaded kaspersky WKS which contains antihacker component which contains...
System Security
firewall blocking notification
How can i capture or log the fire wall blocking program notifications.. where are they stored?
System Security
blocking some ports
Hello all, Im using windows 7 RTM x86 I want to close some opened ports.These ports are 135 and 445. So, I try to close/block these ports using Windows Firewall. ( with advanced settings ) I created inbound rule for closing port 135(TCP) (as you can see attached screenshot ) Also I...
System Security


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 19:31.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App