how many ports do you have forwarded on your router??

**ssym3tryy** · May 15th, 2008, 07:58 AM

How many ports do you have currently forwarded on your router??

I am a big fan of remote access so I have about 16 ports forwarded... that includes a webserver, 2 ftp servers, hamachi listening ports, bittorrent listening ports and remote admin for my router, NAS and XBOX etc...

I hear a lot of people say that for security, you should only forward SSH and then tunnel everything else through that, but I think that would be slow.

**drtoker** · May 15th, 2008, 08:05 AM

I have a bunch of rules setup for games, but I disable them when I'm not playing. I have the remote desktop port open to remote into my machine, and 1 IP on DMZ for my ps3 (didn't feel like finding out ports to open for it...)

**ssym3tryy** · May 15th, 2008, 08:29 AM

Originally Posted by drtoker

I have a bunch of rules setup for games, but I disable them when I'm not playing. I have the remote desktop port open to remote into my machine, and 1 IP on DMZ for my ps3 (didn't feel like finding out ports to open for it...)

be careful with that RDP port, a lot of hackers scan for port 3389.

you can change the rdp listening port in the registry

**curlywagner** · May 15th, 2008, 08:57 AM

I just have one open - for bittorrent. I don't think having RDP on the usual port is any more dangerous than having any other service on its well-known port number. Port scanning tools like nmap will scan thousands of ports in a very short time and give a very good guess as to what service is running on the port. So long as the service itself is secure (strong passwords, no vulnerabilities etc) you're relatively safe.
Interesting thread, by the way :icon_salu

**drtoker** · May 15th, 2008, 09:02 AM

Originally Posted by ssym3tryy

be careful with that RDP port, a lot of hackers scan for port 3389.

you can change the rdp listening port in the registry

Yea, good point. I used to run on a custom port, but since I upgraded my OS, i forgot about that and just did the usual port. I'm always on top of patch tuesday, and I always use strong password and change them often.

I think I'll go change the port now that I'm thinking about it :)

Oh yea, I have one open for BT too, now how did I forget that :icon_scra

**Andrew110** · May 15th, 2008, 09:32 AM

None.... I use UPnP

**ssym3tryy** · May 15th, 2008, 09:32 AM

Originally Posted by curlywagner

I just have one open - for bittorrent. I don't think having RDP on the usual port is any more dangerous than having any other service on its well-known port number. Port scanning tools like nmap will scan thousands of ports in a very short time and give a very good guess as to what service is running on the port. So long as the service itself is secure (strong passwords, no vulnerabilities etc) you're relatively safe.
Interesting thread, by the way :icon_salu

yes, that is true but... most people will only scan the common ports to save time as they are most likely scanning a whole range of IP addresses. it is just a small precaution, but it might help.

**drtoker** · May 15th, 2008, 09:47 AM

Originally Posted by ssym3tryy

yes, that is true but... most people will only scan the common ports to save time as they are most likely scanning a whole range of IP addresses. it is just a small precaution, but it might help.

I would venture to say that for range scanning they are doing 1 port looking for 1 specific service.
Speaking of SSH, according to the internet watchdogs, the 'brute force' attempts on SSH have increased from a handfull of attacks, to hundreds and even thousands of IP's hitting a single target in short amounts of time. Just food for thought for anyone using SSH.
I'll try to dig up a link, but this is like within the past month.