2.1 Failing the GRC firewall test
-
Is 77.66.122.109 your IP?
Supermule - Running a scan - Although, seems more likely thats your server…
Its abit slow. Taking its time.
-
Yeah - I'm into your porn now… (kidding)
Still running. I'll post the results, although I'm sure the results will be next to nothing. -
Are you located in Copenhagen or just hooking up on some VPN??
IP address: 77.66.122.109
Reverse DNS: No Reverse DNS found
Reverse DNS Authenticity: Unknown
ISP: Netgroup A/s
Country: Denmark Denmark
CountryCode: DK
Region: Hovedstaden
City: Copenhagen
Private IP: No -
I'm in Manilla…
That VM is running on a machine is in a rack in Copenhagen.
I did use a VPN to access the desktop and kick off the scan, but I'm not in the desktop right now.
Looks like it will take about another 20 minutes. Abit like watching paint dry.
I'll check it again in 20. -
All scanned port filtered. Also doesn't respond to ping.
In other words, less than nothing.
I only scanned 2000 ports.
-
Thanks dude. :)
-
2.1.5 Cox Las Vegas.
–-------------------------------------------------------------------- GRC Port Authority Report created on UTC: 2014-10-20 at 18:41:47 Results from scan of ports: 0-1055 0 Ports Open 0 Ports Closed 1056 Ports Stealth --------------------- 1056 Ports Tested ALL PORTS tested were found to be: STEALTH. TruStealth: FAILED - ALL tested ports were STEALTH, - NO unsolicited packets were received, - A PING REPLY (ICMP Echo) WAS RECEIVED. ---------------------------------------------------------------------- -
"Most dynamically choose a port at run time, and if that port isn't being forwarded, you can't play."
What game is this - that is moronic way to do it..
"How can you forward the same port to two different computers,"
I never said you could, that is why game on computer A uses port X, game on computer B uses port Y, etc. You seem to completely miss the point, as to your block on WAN?? There is already a BLOCK for ANY, unless you allow it its block.. Putting in another block is pointless!! And yes UPnP would create an allow rule – which is the issue with it in the first place!
-
Hmm, this is unclear to me. Adding a block rule is not the same as there being no allow rule.
Where, logically, in the chain of rules does the upnp added rule appear?Steve
-
Hi All,
Thanks for your replies. I have checked the rules i have in place and these are just TCP only not UDP. There are no rules set for the ports that state open the GRC test states there is 640 Ports Open i know i do not have rules for these. I have disabled UDP on the BT business hub as an extra measure and run the test again but this made no difference. I have attached our current rules applied. I am wondering if it is in fact the BT business hub that is responding not the firewall as if i turn on the firewall on the business hub we get true stealth?
Thanks
 -
UDP was never a problem.
uPNP might be a problem.
Your pfsense isn't doing something different than every other pfsense on the net UNLESS you have changed something from default OR a client on the LAN is causing it.
Thats what we need to find. Its one of those two things.
-
Sorry miss read uPNP will have a look on the Business hub pfSense and see if there is anything. As the pfSense is running default with 3 rules added i assume that this is not enabled by default?
-
Ohhhh - Forgot to mention. Please reboot pfsense between modifications.
Also, disconnect everything except 1 CLEAN client (preferably a clean bare OS install with browser).
-
uPNP is off by default.
-
How do you have the business hub setup? Is it passing your public IP to pfSense?
Steve
-
Hi,
We have it setup on the home screen to use Public IP addresses we have 13 in total.
Static IP: Enabled
The Firewall devices have then got the public IP addresses on the WAN interfaces. The router itself is not assigning these to the devices they are static Public IP's on the firewall devices.
-
Sorry for the delay. I'm not familiar with the business hub but it seems very likely that it is causing the open port reports you're seeing. I'm still not clear how you have it configured.
Steve
