Posted: Mon Aug 30, 2021 23:38 Post subject: Dyndns default port 80 is open
Hi everyone, I need to reach the web gui of my router remotely on a port other than 80. even disabling the remote access from "Administration-> Management", this port remains open, while the non-standard port 8888 closes. How can I avoid accessing the web management only with my dyndns.org address (80)?
My router is a Netgear r67000v3 whith firmware DD-WRT v3.0-r46854 std
Posted: Tue Aug 31, 2021 9:46 Post subject: Re: Dyndns default port 80 is open
andrea_m83 wrote:
Hi everyone, I need to reach the web gui of my router remotely on a port other than 80. even disabling the remote access from "Administration-> Management", this port remains open, while the non-standard port 8888 closes. How can I avoid accessing the web management only with my dyndns.org address (80)?
My router is a Netgear r67000v3 whith firmware DD-WRT v3.0-r46854 std
Regarding port 80 being open, i assume you're referring to Enable site info being enabled, simply disable this, not sure why this is still enabled as a default setting, must be a reason but seems odd to me.
Administration>Web Access> Enable info Site Disable
or if you have had port 80 make sure you have disabled it in Remote access.
to reach your domain on a different port eg: http://mydomain.com:port
But as egc has already pointed out having ports open is not really safe and your far better running a vpn server on the router and vpn client on devices connecting to the sever. egc has written some great tuto's in sticky section https://forum.dd-wrt.com/phpBB2/viewforum.php?f=53 _________________ Netgear R7800 PPPoE Main Router
Network IPV4 - Isolated Vlan's with IoT Devices. Unifi AC-Pro x 3 AP's, Router Wi-Fi Disabled. OVPN Server With Paid Commercial Wireguard Client's. Gateway Mode, DNSMasq, Static Leases & DHCP, Pi-Hole DNS & Running Unbound.
No one can build you the bridge on which you, and only you, must cross the river of life!
Joined: 08 May 2018 Posts: 14242 Location: Texas, USA
Posted: Tue Aug 31, 2021 18:18 Post subject: Re: Dyndns default port 80 is open
foz111 wrote:
Regarding port 80 being open, i assume you're referring to Enable site info being enabled, simply disable this, not sure why this is still enabled as a default setting, must be a reason but seems odd to me.
Administration>Web Access> Enable info Site Disable
This should always be one of the first settings you disable besides the ttraff daemon. I really think this page should be disabled by default as well, or changed to not give out the router information, whatsoever. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
KP Can the ttraff daemon be flushed manually now a days using the Data Administration delete tab?
i have mine disabled but just asking as i was unsure if that was what the tab is was used for? _________________ Netgear R7800 PPPoE Main Router
Network IPV4 - Isolated Vlan's with IoT Devices. Unifi AC-Pro x 3 AP's, Router Wi-Fi Disabled. OVPN Server With Paid Commercial Wireguard Client's. Gateway Mode, DNSMasq, Static Leases & DHCP, Pi-Hole DNS & Running Unbound.
No one can build you the bridge on which you, and only you, must cross the river of life!
"This script will clear all of ttraff's traffic data from nvram whereas using the ttraff GUI button to delete it still leaves the current month's variable."
Code:
for i in `nvram show | grep traff- | cut -f1 -d=""`; do nvram unset $i; done
"This script will clear all of ttraff's traffic data from nvram whereas using the ttraff GUI button to delete it still leaves the current month's variable."
Code:
for i in `nvram show | grep traff- | cut -f1 -d=""`; do nvram unset $i; done
_________________ Netgear R7800 PPPoE Main Router
Network IPV4 - Isolated Vlan's with IoT Devices. Unifi AC-Pro x 3 AP's, Router Wi-Fi Disabled. OVPN Server With Paid Commercial Wireguard Client's. Gateway Mode, DNSMasq, Static Leases & DHCP, Pi-Hole DNS & Running Unbound.
No one can build you the bridge on which you, and only you, must cross the river of life!
Joined: 08 May 2018 Posts: 14242 Location: Texas, USA
Posted: Wed Sep 01, 2021 14:58 Post subject:
That information was added in 2012; has anyone tested to verify if that is still the case? Sorry, gotta play Devil's advocate here. I don't use that feature, but if someone wants to test it and verify, that would be great. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Posted: Sat Sep 04, 2021 0:40 Post subject: Re: Dyndns default port 80 is open
foz111 wrote:
andrea_m83 wrote:
Hi everyone, I need to reach the web gui of my router remotely on a port other than 80. even disabling the remote access from "Administration-> Management", this port remains open, while the non-standard port 8888 closes. How can I avoid accessing the web management only with my dyndns.org address (80)?
My router is a Netgear r67000v3 whith firmware DD-WRT v3.0-r46854 std
Regarding port 80 being open, i assume you're referring to Enable site info being enabled, simply disable this, not sure why this is still enabled as a default setting, must be a reason but seems odd to me.
Administration>Web Access> Enable info Site Disable
or if you have had port 80 make sure you have disabled it in Remote access.
to reach your domain on a different port eg: http://mydomain.com:port
[/url]
Port 80 can still be reached by disabling the option, I don't know why.
Posted: Mon Sep 06, 2021 1:41 Post subject: Re: Dyndns default port 80 is open
andrea_m83 wrote:
gin-n-tonic wrote:
andrea_m83 wrote:
Port 80 can still be reached by disabling the option, I don't know why.
Just a stab in the dark here, but you are sure that you are seeing the open port on the dd-wrt router, instead of seeing an open port on your modem?
Dyndns is under dd-wrt, on another subnet than the isp modem.
No type of port mapping is configured on the latter
No idea if it's related or not, but I once had this problem. Both ports 22 and 80 were both opened even when they were disabled on the remote side. I had to do a full reset and manual restore in order to fix it. _________________ Linksys EA8500 (Internet Gateway, AP/VAP) - DD-WRT r53562
Features in use: WDS-AP, Multiple VLANs, Samba, WireGuard, Entware: mqtt, mlocate
Wireless 5ghz only
Netgear R7800 (WDS-AP, WAP, VAP) - DD-WRT r55779
Features in use: multiple VLANs over single trunk port
Linksys EA8500 WDS Station x2 - DD-WRT r55799
Netgear R6400v2 WAP, VAP 2.4ghz only w/VLANs over single trunk port. DD-WRT r55779
OSes: Fedora 38, 9 RPis (2,3,4,5), 20 ESP8266s: Straight from Amiga to Linux in '94, never having owned a Windows PC.
Posted: Wed Sep 08, 2021 22:54 Post subject: Re: Dyndns default port 80 is open
lexridge wrote:
No idea if it's related or not, but I once had this problem. Both ports 22 and 80 were both opened even when they were disabled on the remote side. I had to do a full reset and manual restore in order to fix it.
Not works for me...I am really amazed by this issue!
Posted: Thu Sep 09, 2021 9:49 Post subject: Re: Dyndns default port 80 is open
andrea_m83 wrote:
lexridge wrote:
No idea if it's related or not, but I once had this problem. Both ports 22 and 80 were both opened even when they were disabled on the remote side. I had to do a full reset and manual restore in order to fix it.
Not works for me...I am really amazed by this issue!
So your saying after a factory reset (and not restored your settings) you've disabled site info and checked UPNP is disabled (which it should be i believe after a factory reset) and you can still reach your router login page?
Is this the main router?
If so check your modem i would suggest. _________________ Netgear R7800 PPPoE Main Router
Network IPV4 - Isolated Vlan's with IoT Devices. Unifi AC-Pro x 3 AP's, Router Wi-Fi Disabled. OVPN Server With Paid Commercial Wireguard Client's. Gateway Mode, DNSMasq, Static Leases & DHCP, Pi-Hole DNS & Running Unbound.
No one can build you the bridge on which you, and only you, must cross the river of life!