What ports does this use?
503 views
Skip to first unread message
Duncan
Jan 2, 2012, 5:18:23 PM1/2/12
to Input Director
Hi, I've been poking at my system (again) and using a new (rather old)
tool (Show Traffic 1.7 ... http://sourceforge.net/projects/showtraf)
and examining what is coming and going. I noticed that switching
between desktops is utilizing a new src port each time. Started at
UDP 4461 (when I first started ShowTraffic) and is currently at UDP
4745. Now is this standard? Do they rotate through a range of them?
(My coding days are long past and I'm out of touch with current
protocols.)
If I was to lock down my firewall settings, what do I "have" to leave
open?
Generally speaking I love ID and look forward to 1.3 moving out of
beta. It is well worth my time to participate in this group.
Thanks,
Duncan
System: XP Pro SP3 using ID 1.3 BETA 100 on 3 machines.
tool (Show Traffic 1.7 ... http://sourceforge.net/projects/showtraf)
and examining what is coming and going. I noticed that switching
between desktops is utilizing a new src port each time. Started at
UDP 4461 (when I first started ShowTraffic) and is currently at UDP
4745. Now is this standard? Do they rotate through a range of them?
(My coding days are long past and I'm out of touch with current
protocols.)
If I was to lock down my firewall settings, what do I "have" to leave
open?
Generally speaking I love ID and look forward to 1.3 moving out of
beta. It is well worth my time to participate in this group.
Thanks,
Duncan
System: XP Pro SP3 using ID 1.3 BETA 100 on 3 machines.
Andrew Leahy
Jan 3, 2012, 5:59:01 AM1/3/12
to input-d...@googlegroups.com
Hi Duncan, you probably need to give us some more information, on which machine (master or slave) did you run showtraf?
For an outgoing communication the source port may not be bound to a static socket/port, but it will be addressed to a static socket/port on the destination end (typically port 31234 for ID).
On a firewall you want a rule like "allow inbound connection to local port 31234 on udp and tcp"
See http://www.inputdirector.com/faq.html#4_3
You could lock that down further with a rule "only allow inbound connection to local port 31234 on tcp/udp when the source address is the IP of your InputDirector master".
That's my guess, I'm only using ID on a private LAN so I don't firewall it at all!
Andrew
--
"Those who know, do not speak. Those who speak, do not know." (Lao Tzu)
My household GHG emissions from energy & transport ~4kg CO2e/day or ~1.4tonnes/year
Household daily use of Water 110L, Electricity 3.9kWh, Petrol 1.2L, Gas 0MJ
For an outgoing communication the source port may not be bound to a static socket/port, but it will be addressed to a static socket/port on the destination end (typically port 31234 for ID).
On a firewall you want a rule like "allow inbound connection to local port 31234 on udp and tcp"
See http://www.inputdirector.com/faq.html#4_3
You could lock that down further with a rule "only allow inbound connection to local port 31234 on tcp/udp when the source address is the IP of your InputDirector master".
That's my guess, I'm only using ID on a private LAN so I don't firewall it at all!
Andrew
--
You received this message because you are subscribed to the Google Groups "Input Director" group.
To post to this group, send email to input-d...@googlegroups.com.
To unsubscribe from this group, send email to input-directo...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/input-director?hl=en.
--
"Those who know, do not speak. Those who speak, do not know." (Lao Tzu)
My household GHG emissions from energy & transport ~4kg CO2e/day or ~1.4tonnes/year
Household daily use of Water 110L, Electricity 3.9kWh, Petrol 1.2L, Gas 0MJ
Duncan MacCaskill
Jan 3, 2012, 7:02:06 PM1/3/12
to input-d...@googlegroups.com
Thank you, that makes sense now. Although I am running on a LAN, there are others using it that I am not confident of their security settings. (Is the sister-in-law keeping her system up to date and protected? Does she even know? {grin})
FYI, I'm running the showtraf on the master. Slave (left) -- Master (center) -- Slave (right). Using 31234 as the defined port. What triggered my curiosity was the number of ports it was running through (the 4461 etc set) every time I move the focus from one system to another. I'm inferring that the src ports are rotated through a pool of ports every time the system talks to a slave.
Thanks for the feed back. I feel more confident with my system locked down tight.
:Duncan
ps: I'm working on getting encryption working next {hehe}
FYI, I'm running the showtraf on the master. Slave (left) -- Master (center) -- Slave (right). Using 31234 as the defined port. What triggered my curiosity was the number of ports it was running through (the 4461 etc set) every time I move the focus from one system to another. I'm inferring that the src ports are rotated through a pool of ports every time the system talks to a slave.
Thanks for the feed back. I feel more confident with my system locked down tight.
:Duncan
ps: I'm working on getting encryption working next {hehe}
Reply all
Reply to author
Forward
0 new messages