port 5900 block
My system administrator told me to take down my Apple Airport Extreme because of a vulnerability. Administrator says:
"The remote host is an airport Apple Wireless Access Point.
can be administered on port TCP 5009.
There is a design flaw in the administrative protocol that makes
clients that connect to this port to send the password
clear (though slightly obsfuscated).
An attacker who has the ability to intercept data this will
device can use this flaw to get his administrative password and
its gain setting. From the airport to the base station does not keep all
Journal, it will be difficult to determine administrative access
has been stolen.
Solution:
Block incoming port traffic and administer only
This base station when connected using a cross-over ethernet
cable. »
I am brought to believe that Airport Extreme is not blocking ports, and to forward port 5900 to a non-existent address.
Can someone on this and perhaps provide clear instructions on how to forward a port to a non-existent address?
By default, as a NAT router, all incoming ports on the airport base stations are blocked. Has no way to specifically block ports (incoming or outgoing) through the AirPort Utility limit.
Your suggestion of redirecting from one port to a non-existent address should work.
For port mapping/forwarding, check out this Tip to the user for more details. As for the IP address to use, I suggest that take you a from outside the DHCP scope by default on the base... which is 10.0.1.2 - 10.0.1.200. So, 10.0.1.201 should do.
Tags: Wireless
Similar Questions
-
OfficeJet 6500 a printer seems to have disabled - ethernet port is blocked with the yellow plug.
Hi, I bought an OfficeJet 6500 has more around a year ago and have been using it with variable success using wireless internet. I thought that it might help to connect using wired ethernet, but I just discovered that the ethernet port is blocked by a yellow card.
Documentation that I found online, this expected to be activated, so I do not understand why it is not - can someone explain what is happening?
It's a shipping plug, just remove the CAP and you will be able to set the ethernet cable.
-
Hi, I think I tried everything I could think to forward port 5900 with no luck. I have e4200. This is for the purposes of RealVNC. I followed the steps from here:
http://PortForward.com/English/routers/port_forwarding/Cisco/Linksys-E4200/RealVNC.htm
I have windows 7 and internet safety of nortn. I've disabled the firewall and added a rule to redirect port 5900 under windows but does not help either.
any idea what else do I do? Thank you.
mani99 wrote:
Thanks for all your replies. However, pfporterchecker has always said that the port is not open! Here's what I've tried so far:
-reset the default router
-windows Firewall includes the exception for port 5900
-updated the firmware (there was a new one that just came out a couple of days!)
-filter disabled in the Security tab options
-forwarded port according to the link in the ther first port
How about you, you isolate the problem. Try front/open another port number and see if that will open uisng pfporterchecker. If it will also say 'Not open', try disabling UPNP and then check again through pfportercheckern.
-
OneNote hijacks my usb port and blocks printer inkjet Lexmark 4200.
I am trying to use a printer ink Lexmark 4200 with xp pro and office Enterprise 2007. on a HP a365c. The usb port is monopolized by the onenote program that runs my impression rather than Lexmark 4200 onenote comand. The fax Lexmark 4200 is functional. I have not tried to send a fax via the computer yet but will be shortly. I just feed in the Lexmark 4 in one. I tried to disable a note with the enterpise office program, but it has no effect. There is a /slash of red circle at the entrance to Lexmark 4200 on the screen of the printer of the Panel control my XP. Does anyone have any idea on this? I don't want onenote on this machine, but it cannot go down. Another PC computer with an earlier edition of microsoft word etc works fine after reading the instructions from Lexmark to click 'Cancel' on the new hardware screen that produces the XP to start. I did it with this one, but nothing helped. The other is a Comapaq older which is my ACE in the hole. The usb port is occupied by the lexmark 4200. There is no Onenote on this machine.
James
Hi jamestowne,.
Ø do you remember recent changes made on the computer before the show?
Ø what is the service pack installed on the computer?
It seems that the printer is not recognized by the computer.
Uninstall the Lexmark printer from the computer and reinstall the same and see if it helps:
How do I uninstall the Lexmark printers: http://support.lexmark.com/index?id=HO3518&locale=en&productCode=LEXMARK_PLATINUM_PRO905&segment=SUPPORT&page=content&actp=HOTTIPS&userlocale=EN
To install the print drivers refer: how to download and install the latest printer driver from your printer manufacturer's Web site: http://support.microsoft.com/gp/pc_print_introduction
-
Port forwarding blocking access SSH, POP3, and IMPA
I recently acquired a Linksys EA8500 and very strange, annoying, and annoying problem has developed. I have a mail server and files in my home network I can access it from outside my house using a dynamic IP service. The server is running DNS as well, so it can be but from inside and outside the local network form using the same URL. Of course, external access, to set up the port forwarding on the router. This Setup has worked well with my previous, lower end, (a D-Link) router and, for a while, with the EA8500. However, there are some time (and I'm not aware of anything that has changed the situation) it doesn't work anymore: If port forwarding is enabled, requests for access over WiFi within the local network and outside the LAN are received by the server, as if they came from the top , instead of the actual computer and are thus rejected (authetication is through security keys). Always access requests work correctly on the cable connections and return to normal over WiFi if port forwarding is removed. Of course, this cancels the whole point of port forwarding. This never happened with the router D-Link and, as I mentioned, didn't happen with the EA8500 first. I have enabled and then disabled access as a guest and no DMZ have put in place, but which did not help. I have both the 2.5 MHz and 5 MHz networks active, although I'm only using version 2.5, but they have different sid, and I'm on the network with and without port forwarding 2.5 on.
Any suggestions will be greatly appreciated
Okay, I found where the problem was, and I apologize for having raised this issue just because I made a very stupid mistake. It turns out that I had added DNS servers external (outside my local file/mail/DNS server) to the list on my router (and I forgot about it). Cancel the additional DNS resolvers seems to have solved the problem. I'm far from understanding how the DNS works really, as you can see.
-
Unable to block the port with pfctl(8)
I try to block the process that is listening on the port on my MacBook Pro 9110 to simulate the network interruption.
If I have the following rule:
-------------------------------------------------------------------
block fast drop on all proto tcp from any to any port = 9110
--------------------------------------------------------------------
My second process has communicated successfully with the port is blocked, and the client has successfully sent applications to the blocked process. The best I could achieve blocks all communications process with these lists of rules:
---------------------
drop block in all
block any waiver
---------------------
However, this is exactly what I need. Am I missing something? Any commnets/suggestion will be appreciated. Here is my result of lsof command:
> > lsof-i | grep 9110
Java 41243 yfe 132u IPv6 0x1e7d5327e0e36555 0 t 0 TCP 192.168.1.68:58772-> 192.168.1.68:9110 (ESTABLISHED)
Java 41243 yfe 145u IPv6 0x1e7d5327e0f43035 0 t 0 TCP 192.168.1.68:58777-> 192.168.1.68:9110 (ESTABLISHED)
Java 41244 yfe 133u IPv6 0x1e7d5327e116eab5 0 t 0 TCP 192.168.1.68:58747-> 192.168.1.68:9110 (ESTABLISHED)
Java 41244 yfe 147u IPv6 0x1e7d5327e0e3a075 0 t 0 TCP 192.168.1.68:58756-> 192.168.1.68:9110 (ESTABLISHED)
yfe Java 41253 201u IPv6 0x1e7d5327e0e38595 0 t 0 TCP *: 9110 (LISTEN)
Java 41253 yfe 278u IPv6 0x1e7d5327e0e39055 0 t 0 TCP 192.168.1.68:9110-> 192.168.1.68:58747 (ESTABLISHED)
Java 41253 yfe 279u IPv6 0x1e7d5327e4a195b5 0 t 0 TCP 192.168.1.68:9110-> 192.168.1.68:58756 (ESTABLISHED)
Java 41253 yfe 280us IPv6 0x1e7d5327e5560035 0 t 0 TCP 192.168.1.68:9110-> 192.168.1.68:58772 (ESTABLISHED)
View the results of the next PF sanity check:
% sudo pfctl(8) - v - n f /etc/pf.conf
-
Hello
I noticed that when LabVIEW (8.6 but before as well) application that uses VISA is installed (by building the Installer) port UDP 6000 is blocked and no other program can use it.
Does anyone know how to check that the other ports are blocked by VISA?
Thank you
Pawel
-
How can I keep the 2077 and 2078 ports to be blocked in the firewall?
I turnrd firewall, but I always get a message that 2077and 2078 ports are blocked.
How can I make sure that they aren't blocked?
Hi Dallas L. Woods,.
See the following article:
http://support.Microsoft.com/kb/308127
I hope this helps!
-
Port 0 is not blocked the victim
We were see switchis sig alerts with gravity high and port 0 that are not blocked by IPS of the victim. All other ports are blocked are the same sig alert. I understand that port 0 is not valid port for traffic, but I read some articles which suggests there have been reports of port 0 being used to test and/or DDoS attacks. We do not know whether we should change the rule of action to block port 0 or if it is still possible.
Information or suggestions on this subject are welcome.
You have a sample alert you can share - strip anything sensitive (ip, data context, etc.)... I suspect that you see a summary alert when the port gets zeroed - in the alert, you will see that there is indication 'summary' - individual alerts consumed by the alert of synthesis would be to drop packets if it was the action that is affected.
-
Hello, I got a MacBook Air with Yosemite, I would like to know if theres a command so I can close or refuse all conections hollow port 5900.
After that it is there another command to re open or allow all connections (in case something goes wrong)?
Thank you very much
I would like to know if theres a command so I can close or refuse all conections hollow port 5900.
Turn off screen sharing in sharing preferences window.
is there any other command to re open or allow all conections
Select the same.
-
I opened the ports on my Airport for HTTP, TCP, and UDP.
By using the website canyouseeme, I confirmed that the TCP and HTTP ports are open.
However, the UDP port is indicating 'connection refused '.
Port forwarding is configured to be the same for each.
Any thoughts would be appreciated...
I opened the ports on my Airport for HTTP, TCP, and UDP
FWIW, only the HTTP protocol is a 'standard' port already assigned. It is port 80. This port can be a type TCP or UDP port. On the other hand, generally TCP or UDP ports vary from 0 to 65535... so your statement «I open ports on my Airport...» TCP and UDP"does not tell us what are the ports really tried to open and for what reason.
Some ports are blocked by ISPS, so this may be a reason that the method used, canyouseeme, can not 'see' she also open.
Is your 802.11ac AirPort Extreme router "main"? In other words, it is directly connected to a simple Internet modem via an Ethernet connection between them?
-
Router not configured for port forwarding
I use a modem wireless to my ISP, they block all ports less than 1024 and I need to forward ports 80 & 440
How can I solve this?
If you configure your router for a LenovoEMC Personal Cloud and always see the message, "Not configured router for port forwarding" under personal cloud Configuration, one or more of the following ports are probably blocked by your internet provider (ISP): 80, 443or port selected in the range 50500-50599 .
Port 80 is used for internet access (HTML UN-secure) in general. If this port is blocked, but the ports 443 and 50500 are open, the Personal Cloud will work correctly even if the error message appears.
Port 443 is used for remote access on the host network storage device. If this port is blocked, but the port selected in the range 50500 is open, you will be able to use the Personal Cloud LenovoEMC and invite others to use it, but you will not be able to access your network storage device via the Internet URL. (See answer ID 30773 for more information on access remotely through Personal Cloud LenovoEMC.)
A port in the range of 50500-50599 must be routed through the router to use the function LenovoEMC Personal Cloud. If this port is blocked by your ISP, you will not be able to access the Personal Cloud to your network storage device or invite others to join the Personal Cloud. (For more information, see answer ID 29070 .)
-
Kind of a strange question here but I hope someone has some advice.
situation: a user tries to access a web service (site) on an odd udp port. He doesn't work for them, so they want to we (ISP) to tell them if the port is blocked anywhere on the network of the ISP.
Question: I know that I can look through the newspapers and acl to trying to figure out if there is anything that might block this traffic. But what I want to do is set up some friendly service of fo that uses the same port and try to connect to this port. This way I can be sure that this IS 100% or DON'T work. Does anyone have ideas, what I can do? Or am I stuck, manually via the acl and logs? Thank you and I hope I explained it well enough.
a small utility from microsoft named ttcp.exe, that will listen to a specific port (udp or tcp) on a pc or a server.
-
How to block Internet access to all but a few IP addresses or domains?
We would like to set up a Windows 7 PC for online banking. The machine will only be used for this purpose. A browser, probably IE, must be able to connect to the Web site of a bank online banking, so that ACH and wire transfers can be initiated. We have a few additional connections necessary for security and essential services to run properly (for example Trusteer report, a security suite, Windows Update?). But we want to block connections to/from everything so no other type of web browsing, e-mail or other type of network access is possible. We thought that doing so through the Windows Firewall or the snap-snap-in MMC to advanced security seemed way to go, but this configuration correctly so that it works as expected is not exactly obvious or simple for novices.There are also block USB ports. Would disable us all, but we have the keyboard / mouse to work! We don't want no users unplug the mouse and plug it in USB thumb drives. The less elegant solution for locking already locked box in another box locked for physical access to the external USB ports are blocked.Two things to look at would be to run it through a server proxy to restrict access to the Internet and use a white list and the issuance of USB you can watch the fact with a GPO.
I hope this helps.
-
In what circumstances should open ports on a server ESXi 4. The admin newwork insists that the port is blocked at the level of the host ESXi 4. He tries to get out via a virtual machine that is unable to connect to a service on a remote server. Thus, he keep insisting that we open port/s on the ESXi 4 server. How can I open a port 10001 on ESXi 4 server or make sure it is not blocked at the level of the ESXi 4 server.
Kind regards
ESXi has no * capacity * to block a port to a virtual machine - it's a layer 2 switch (unless you use Nexus 1KV) - there is nothing to check.
Maybe you are looking for
-
Should I buy an iPad Pro or Air 2?
Hi, I want to know if I should buy an iPad Pro or Air 2, could someone help decide me?
-
I'm not anble to emails sent to addresses of mail hot
I am not able to send emails to those who use hot mail addresses.
-
My Ipad 2 cannot be activated after update IOS 9.3
Personal Hello to apple, I use ios ipad 2 9.1 or 9.01 (I forget the details). today (22 March 2016) I'm trying to upgrade to ios 9.3 using wifi to connect. After download, install then reboot, my ipad cannot be activated. the error message: "your ipa
-
Re: Qosmio X 770 and Windows XP64bit
Hello I recently bought a new Toshiba Qosmio X 770, but unfortunately it came with this new Windows 7. I have 2 other laptops from toshiba, one is a Netbook NB200 with WinXP32bits running well about 1 year or more and another big a Satellite P300 als
-
PSC0LA Satellie C660: After RAM upgrade only slightly increased memory
Toshiba Satellite C660 Notebook PSC0LA - 01C01H (32-bit; RAM maximum 4 GB [2x2gb]), Windows 7 SP1 When bought this laptop has 2 GB of RAM and memory of 1.67 GB. After that I recently doubled the RAM to 4 GB (maximum possible), available memory has in