D-Link Forums
The Graveyard - Products No Longer Supported => Routers / COVR => DIR-655 => Topic started by: sfitt on November 30, 2011, 08:29:58 AM
-
External port scan indicates udp port 111 is open, how do I block it on DIR-655
-
This maybe open for a reason:
http://www.grc.com/port_111.htm (http://www.grc.com/port_111.htm)
What are your SPI setting set for currently?
-
I am aware of the Sun Remote Procedure Call, however there are no Unix or Linux based systems on the network. SPI is Enabled, UDP Endpoint Filtering is Address Restricted , TCP Endpoint Filtering is Port And Address Restricted.
-
What Hardware version is your router? Look at sticker under router.
What Firmware version is currently loaded? Found on routers web page under status.
-
Hardware Version: B1 Firmware Version: 2.00NA
-
Hmm. I have the same Version at home. I will have to check on this when I get home.
Most research on line results in a lot of information regarding blocking on OSs and not pertaining to routers. I might presume that it's open for a reason since Unix and Linux bases OSs might need it open and Dlink might push this to the operators and users of those OSs to block it in the OS and not the router. So not sure if there is a way to block it on the router...you might be able to set up a Port Forward rule and select Deny All. Use 111 for BOTH TCP and UDP and Deny ALL.
http://www.sans.org/security-resources/idfaq/blocking.php (http://www.sans.org/security-resources/idfaq/blocking.php)
http://www.wilderssecurity.com/showthread.php?t=303979 (http://www.wilderssecurity.com/showthread.php?t=303979)