DrayTek UK Users' Community Forum

Help, Advice and Solutions from DrayTek Users

Pen-testing Vigor 2865 - Can't close some ports?

  • ctluk
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
19 Apr 2022 16:33 #101022 by ctluk
Hi,

I have been helping a customer that has to have their WAN connection pen-tested. The only inbound service on the router is a IPSec/L2TP VPN, everything else is switched off/disabled. However the pen-test has identified that the following ports are still available:

UDP161 - SNMP
TCP444 - SNPP

SNMP is disabled and is also disabled in the management settings. TCP444 is the default normally for SSL VPN but again this is disabled. The router isn't manageable from the internet. I'm a bit confused to why these ports are open or at least appear to be (I have used this site https://www.ipvoid.com/udp-port-scan/ - to test my own router and these ports are open on mine also, although they shouldn't be). Is there something I can do to disable these services? I've tried to reach out to support but as yet they've not responded and I can't seem to contact them via phone.

Cheers
Rob

Please Log in or Create an account to join the conversation.

More
20 Apr 2022 16:22 #101025 by qwaz01
RE port 444 - have you tried unbinding it from the interface?

Please Log in or Create an account to join the conversation.

  • ctluk
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
20 Apr 2022 17:05 #101027 by ctluk
I've not tried that, can you explain how I would go about doing that?

Please Log in or Create an account to join the conversation.

More
20 Apr 2022 17:36 #101028 by pharcyder
I've had problems with open ports that shouldn't be in earlier firmwares on the 2865. Report it to support.

Please Log in or Create an account to join the conversation.

  • ctluk
  • Topic Author
  • Offline
  • Junior Member
  • Junior Member
More
20 Apr 2022 18:11 #101029 by ctluk
I think support are short handed at the moment, 30 minutes waiting on the phone earlier with no answer, I've dropped them a mail so hopefully someone will pick that up.

Please Log in or Create an account to join the conversation.

Moderators: ChrisSami