Firewalls...Hardware ones and Program ones

Discussion in 'Software' started by mdowns, Aug 10, 2004.

  1. mdowns

    mdowns Private First Class

    Hey Geeks. :)

    I posted a thread a couple of days ago asking a question about Zone Alarm. Rather than rehashing that here, I'd rather ask another firewall related question.

    First some situation background. I'm running a Gateway Solo 2500 (400 Celeron, 296 RAM, Windows98se) at work. I'm hooking up to a office network cable to access the internet. I am assuming that there is a router and a couple of hubs buried under and within the desks in the office allowing me to accesss the cable connection to the net. I am also running Kerio PF, I was previously running ZA and then Outpost before switching again. With all programs, when I run PC Flank's "stealth test" I keep coming up "un-stealthed." When I run the trojan test, various ports come up as "closed" rather than "stealthed" (except port 35, which is open).

    My question is this: would the router (presumably) used here at the office be the one causing the closed ports and the un-stealthed appearance?
     
    mdowns, Aug 10, 2004
    #1
  2. goldfish

    goldfish Lt. Sushi.DC

    That depends. Do you run a server at your office? If so, you might have ports forwarded to it. OR you might have DMZ to this server computer.

    The test you are doing is testing the router rather than your personal computer, I presume, if you are using NAT. If you're not using NAT (which acts as a firewall) then your firewall isnt working correclty (also known as an edgless network, where your company is granted a range of IP addresses, rather than sharing just one).

    To me, it sounds like one machine has DMZ (any unsolicited connections are forwarded to this machine) and this machine doesnt have a firewall running (OOPS!)

    By the way, I *think* Port 35 is a Cisco management port.. which really shouldnt be open to the outside world!!
     
    goldfish, Aug 11, 2004
    #2
  3. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    That senario is common when using those online tests and you have a router between your PC and the internet, all they are doing is scanning the router and not your PC ... to have the scans test your PC you would have to set the DMZ of the router to your local IP address which will forward all ports to your PC leaving it open to attacks/tests etc etc.


    port 35 is for print server

    you can check out any port using this search @ PC Flank
    http://www.pcflank.com/ports_services.htm
     
    DavidGP, Aug 11, 2004
    #3
  4. goldfish

    goldfish Lt. Sushi.DC

    Nice link Halo me man! :D

    But... if he is using NAT, then all ports should be shown as stealth, not closed. And if he is DMZed then the firewall would show it as stealth. Which is why I thought that perhaps another machine is DMZed, like a server for example.

    Out of interest, what port scan utility are you using?
     
    goldfish, Aug 11, 2004
    #4
  5. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    DavidGP, Aug 11, 2004
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds