Correct Way To Block Port 5670.

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Author Message
Mat Salleh
DD-WRT Novice


Joined: 18 Jun 2016
Posts: 10

PostPosted: Mon Feb 06, 2023 4:28    Post subject: Correct Way To Block Port 5670. Reply with quote
I want to block inbound and outbound traffic on port 5670 on my device for software update.
Is this the correct way to do it or require the iptables for the completing the blockage?

Access Restriction>Blocked Services>Add/Edit Service>Protocol>TCP 5670~5670
or
iptables -I FORWARD -p tcp --dport 5670 -j DROP

Anything else I should be adding for blocking so there is no traffic coming or going on this port?

Do I require to use the UDP for blocking the port too?
Sponsor
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6411
Location: UK, London, just across the river..

PostPosted: Mon Feb 06, 2023 8:48    Post subject: Reply with quote
iptables -I FORWARD -p tcp --dport 5670 -j DROP
iptables -I FORWARD -p tcp --sport 5670 -j DROP

blocks destination
blocks source

if you need for udp add those too
iptables -I FORWARD -p udp --dport 5670 -j DROP
iptables -I FORWARD -p udp --sport 5670 -j DROP

bear in mind those rules are very general cut off on those ports

you could be more specific and add just the device or interface, so the others will still make use of those ports

iptables -I FORWARD -i br0 -d 192.168.1.100 -p udp --dport 5670 -j DROP

_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55179 WAP
TP-Link WR1043NDv2 -DD-WRT 55303 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55460 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55460 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55363 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum