My WRTG54L have open ports that I have not opened

Discussion in 'Cisco/Linksys Wireless Routers' started by jotap_66, Jan 29, 2007.

  1. jotap_66

    jotap_66 LI Guru Member


    I have just bought a Linksys WRT54GL version 1.1, with Linksys original firmware 4.30.7. I think I have all the ports closed, but if I try to scan all my ports using a command (like Linux nmap), I find two ports open. They are ftp (21) and http (80)...Anyway I can not conect to these ports (I cant access to a ftp or web).

    Why is happening this?

    My many thanks in advance

  2. rickyschrieber

    rickyschrieber LI Guru Member

    Normally Linksys stock firmware doesn't allow ftp, sftp, ssh basically anything BUT http. As for http, this would have to be accepted since you could have set some parameters, however this usually requests username/password.
  3. jotap_66

    jotap_66 LI Guru Member

    It is very strange, because I dont know why the ftp port is open...About http, I have this port closed..

    I only see both ports in the WLAN no in my internal LAN (192.168.x.x)

  4. HennieM

    HennieM Network Guru Member

    jotap_66, are you sure the FTP port is not perhaps 23, i.e. tftp? The tftp daemon is probably launched at router startup to receive firmware (if uploaded).
  5. jotap_66

    jotap_66 LI Guru Member

    I am sure...They are ftp (21) and http(80)


  6. HennieM

    HennieM Network Guru Member

    Don't know why that would be. Here the output from netstat -a on my GL running Thibor15c. I have just the http- and the telnet interfaces running. The connected telnet is my machine:

    /tmp # netstat -a
    Active Internet connections (servers and established)
    Proto Recv-Q Send-Q Local Address Foreign Address State
    tcp 0 0 *:www *:* LISTEN
    tcp 0 0 *:domain *:* LISTEN
    tcp 0 0 *:telnet *:* LISTEN
    tcp 0 302 ESTABLISHED
    udp 0 0 *:2048 *:*
    udp 0 0 localhost:34954 *:*
    udp 0 0 *:domain *:*
    udp 0 0 *:tftp *:*
    Active UNIX domain sockets (servers and established)
    Proto RefCnt Flags Type State I-Node Path
    unix 6 [ ] DGRAM 250 /dev/log
    unix 2 [ ] DGRAM 652747
    unix 2 [ ] DGRAM 1061
    unix 2 [ ] DGRAM 475
    unix 2 [ ] DGRAM 254
  7. jotap_66

    jotap_66 LI Guru Member

    Thank you very much. I have just contacted with a friend of mine with a GS model(also with the linksys firmware), and he also has the ports open:

    This is the output of the nmap linux command

    Starting nmap 3.81 ( ) at 2007-01-30 22:44 CET
    Interesting ports on ...
    (The 1651 ports scanned but not shown below are in state: filtered)
    21/tcp open ftp
    25/tcp closed smtp
    80/tcp open http
    113/tcp closed auth
    135/tcp closed msrpc
    137/tcp closed netbios-ns
    138/tcp closed netbios-dgm
    139/tcp closed netbios-ssn
    445/tcp closed microsoft-ds
    1025/tcp closed NFS-or-IIS
    1080/tcp closed socks

  8. jotap_66

    jotap_66 LI Guru Member

    I repeated the nmap test again and these ports (21 and 80) are closed...Its incredible...In my modem 54GL, these ports are not there now....Also these ports are not now in my friend's router 54Gs...

    We have in common, the same ISP...It seems a ISP problem....

    My question is if I can see more ports open due to an ISP problem

    Thank you very much

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice