Plex Server vulnerability (UDP 32414 / 32410)

Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking
Author Message
student13
DD-WRT User


Joined: 17 Nov 2016
Posts: 91

PostPosted: Sun Feb 14, 2021 8:55    Post subject: Plex Server vulnerability (UDP 32414 / 32410) Reply with quote
Hi Plex server has a vulnerability on ports 32414 and 32410.
If I I enter a simple iptables command to drop connections on ports 32410 32414 would that do the trick ?

iptables -I FORWARD -p tcp --dport 32414 -j DROP
iptables -I FORWARD -p tcp --dport 32410 -j DROP

related article:


https://thehackernews.com/2021/02/cybercriminals-now-using-plex-media.html

https://www.netscout.com/blog/asert/plex-media-ssdp-pmssdp-reflectionamplification-ddos-attack
Sponsor
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 5391
Location: UK, London, just across the river..

PostPosted: Sun Feb 14, 2021 10:58    Post subject: Reply with quote
those lines will cut off all WAN communication for those ports...and if plex is actively using those, it may not work any more as it should...sry but im not a 'plex' user, you can use MiniDLNA instead, as it runs on router level too....
_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 50500 WAP
TP-Link WR1043NDv2 -DD-WRT 50963 Gateway,DNS,AP Isolation,Ad-Block,Firewall,Forced DNS,DoT,VPN,VLAN
TP-Link WR1043NDv2 -DD-WRT 50963 Gateway,DNS,Ad-Block,Firewall,Forced DNS,DoT,VPN,VLAN
TP-Link WR1043NDv2 -Gargoyle OS 1.13.0 AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear R7800 --DD-WRT 50963 Gateway,DNS,AD-Block,AP&Net Isolation,VLAN's,Firewall,DoT,Vanilla
Netgear R9000 --DD-WRT 50927 Gateway,DNS,AD-Block,AP Isolation,Firewall,Forced DNS,DoT,2,4Ghz only,Vanilla
Broadcom
Netgear R7000 ---DD-WRT 50927 Gateway,DNS,AD-Block,Firewall,Forced DNS,VLAN's,DoT,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby for DNS over TLS I DNSCrypt v2 by mac913


Last edited by Alozaros on Sun Feb 14, 2021 13:29; edited 1 time in total
kernel-panic69
DD-WRT Guru


Joined: 08 May 2018
Posts: 13113
Location: Texas, USA

PostPosted: Sun Feb 14, 2021 11:40    Post subject: Reply with quote
I think the premise of the OP was to restrict access to the Plex server from the WAN. Plex is available on many platforms these days. The thing to do is to see if those ports are open from the WAN side with the Plex server running, then figure out what iptables rules work. Isn't the forward chain for sending to the outside world and vice-versa? AFAIK, Plex will run on the LAN without any internet connection whatsoever.
_________________
"Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT
Pogo - A minimal level of ability is expected and needed...
At some point, people just get plain tired of this place.
Because they are tired of bottom-feeders and the same old hat.

----------------------
Linux User #377467 counter.li.org / linuxcounter.net
eibgrad
DD-WRT Guru


Joined: 18 Sep 2010
Posts: 9157

PostPosted: Sun Feb 14, 2021 11:54    Post subject: Reply with quote
Those ports being actively blocked is only relevant if the plex server on the LAN is being forwarded to from the router, whether that's due to UPnP being enabled, or you having configured port forwarding on the GUI.

IOW, any given exploit for some internal device on the LAN is only vulnerable to the internet to the extent that device is actually accessible from the internet.

This is one of the reasons I don't leave UPnP enabled. I don't want LAN clients opening ports on the router behind my back.

_________________
ddwrt-ovpn-split-basic.sh (UPDATED!) * ddwrt-ovpn-split-advanced.sh (UPDATED!) * ddwrt-ovpn-client-killswitch.sh * ddwrt-ovpn-client-watchdog.sh * ddwrt-ovpn-remote-access.sh * ddwrt-ovpn-client-backup.sh * ddwrt-mount-usb-drives.sh * ddwrt-blacklist-domains.sh * ddwrt-wol-port-forward.sh * ddwrt-dns-monitor.sh (NEW!)
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum