1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to stealth ports? GRC Shieldsup

Discussion in 'Tomato Firmware' started by nexxman, Jan 30, 2010.

  1. nexxman

    nexxman Addicted to LI Member

    I just recently moved and I noticed that only 4 of my ports are showing up as STEALTH in GRC Shieldsup website the rest are CLOSED. How can I make sure everything is back to stealth again? Whats worse is HTTP shows up as open. I can only assume this has something to do with the ISP. Please help.....
     
  2. cariyawa

    cariyawa Addicted to LI Member

    Can you tell me what your setup is? As an example...

    Cable modem->Router->Win PC?

    and also do you have tomato installed?

    ... I really don't think ISP has anything to do with opening HTTP port..
    Cheers:biggrin:
     
  3. nexxman

    nexxman Addicted to LI Member

    You are correct

    Cable modem-> in to Router WAN port-> PCs into router LAN ports.
    Simple setup really. Nothing complicated. I just don't understand why are the ports not showing up stealth..... And I can't find in Tomato if there is a way to check if firewall is actually turned on.
     
  4. cariyawa

    cariyawa Addicted to LI Member

    First lets try to deal with HTTP port issue..

    1. Check you tomato setting:
    Go to Administration->Admin Access
    In the "web Admin" section, "Remote Access" must NOT be selected.
    (There is an even easy way to check this... Go to tomato and get the wan ip...open the browser and http://yourwanip... If you see your tomato open, that means you have allowed remote access)

    2. Check the firewall
    Advanced->Firewall

    3. Check the port forwarding...Based on your setup, it seems to me that you are not trying any port forwarding.. So there must not be any..(after you check first two, if you need more on this, lets do it later.. hopefully one of the above two will solve this issue)....

    I just want to let you know that I have put tomato 1.27 menu structure... If you have a old release, it may be slightly different.
    :biggrin:
     
  5. nexxman

    nexxman Addicted to LI Member

    1. Yes Remote access is set Disabled. Tested Wan IP and no Tomato popup.
    2. Everything is unchecked. Natloopback set to Forwarded Only.
    3. Actually I do have port forwarding setup for torrent downloading.
    I'm Running ver 1.23
    BTW Thanks for the assist cariyawa! :thumbup:
     
  6. cariyawa

    cariyawa Addicted to LI Member

    Can you try after disabling all port forwarding? I am kind of confused how port 80 got open... I believe that these port testers check ports open to the out side world... as an example, in my settings I have port 21 and 22 open in my LAN...but site you mentioned only port 80 which I have opened/forwarded for my http traffic.

    Update: I did a mistake by saying in the previous post that you can just check your port 80 is opened by http//yourwanip, but default port for remote access is 8080. So you have to use http://yourwanip:8080.. But your port 8080 is not opened, it wan't give the result that I expected which is checking port 80
     
  7. jyavenard

    jyavenard Network Guru Member

    This GRC test is worthless from a security point of view ; having a port showing as closed or stealth makes no difference whatsoever to how robust your system is...

    For some 10 years script kiddie maybe ..
     
  8. cariyawa

    cariyawa Addicted to LI Member

    Yes.. that may be true...but I am confused how his/her port 80 got opened in his router for the outside?
     
  9. nexxman

    nexxman Addicted to LI Member

    I disabled port forwarding but results are still the same as before. I'm at a loss...
     

Share This Page