Hi Christopher I tried the ShieldsUp Portscan. It shows my Firewall's TCP Port 5000 as "closed" too. It seems that this is a problem of the ShieldsUp Scan Engine/Homepage. I definitely DENY TCP Port 5000.
--- Sandro Minola | LEAF Developer (http://leaf.sourceforge.net) mailto:[EMAIL PROTECTED] | mailto:[EMAIL PROTECTED] http://www.minola.ch | http://leaf.sourceforge.net/devel/sminola -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Christopher Holmes Sent: Thursday, February 21, 2002 4:36 PM To: [EMAIL PROTECTED] Subject: [Leaf-user] Dachstein firewall questions I'm running Dachstein & haven't changed any of the ipchains rules. I just ran Shields Up (https://grc.com/x/ne.dll?bh0bkyd2) to test out the firewall. A few questions... 1) All tested ports show up as Stealth, ie they don't respond when a connection attempt is made from outside... Except Port 5000 (UPnP) which shows up as closed. What is UPnP? Why does this port respond? Not a big deal, but it does show outsiders that my address has a machine behind it. 2) My port 53 is getting whacked hard for 10-20 seconds once or twice a day from the same group of IP's. Anyone know what this might be? Trying to find a bind vulnerability? Should I bother tracking down the IP's? 3) I also notice occasional random inbound attempts from 192.168.x.x and 10.x.x.x. Shouldn't my ISP be preventing this sort of thing? Thanks, Chris _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
