my router has no security

[Chooco]

ok since i run a game server an FTP server and an HTTP server, i got a router to provide some security.
it's a Linksys 4 port
i plugged the modem cable into the WAN port then set it for auto IP and 2 computers (thats all i have connected so far), i turned off the computer, put the modem cable into the uplink port, turned on my computer and started getting all my stuff running. people can connect fine, my IP is the same as before but my security is not 1 bit better!
check this site to see how secure YOUR stuff is.... and advice me if you know what the problem is
<A HREF="http://www.linkscomputersupport.co.uk/sports.htm" target="_new">http://www.linkscomputersupport.co.uk/sports.htm</A>

<A HREF="http://www.shawnserver.cjb.net" target="_new">Check out my Website</A>

 

[Zlash]

A router is only as secure as you make it.

<font color=red>:</font color=red> <font color=white>:</font color=white> <font color=blue>:</font color=blue>

 

[Chooco]

why doesn't the manual say anything about how to set it? theres only a brief installation thing that doesn't even mention the thing about taking the cable from the WAN port and putting into the uplink port after yer done configuring it. how would anybody non tech literate know that?

also, the book that came with it only explains stuff about the router itself such as 'the wan port is to set the router and this router has 4 ports' there is absolutely nothing about how to make it secure.

<A HREF="http://www.shawnserver.cjb.net" target="_new">Check out my Website</A>

 

[jihiggs]

you are mistaken, the linksys router is very secure. you should not confuse your own limited knowledge to a poor product.

i went to the tomshardware forums and all i got was this lousy signature.

 

[Chooco]

look at these pictures of just how "secure" Linksys really is!

<A HREF="http://66.222.150.188/junk/secure1.jpg" target="_new">picture1</A>
<A HREF="http://66.222.150.188/junk/secure2.jpg" target="_new">picture2</A>

<A HREF="http://www.shawnserver.cjb.net" target="_new">Check out my Website</A>

 

[Zlash]

Lol, my cable is 10x more secure than that and i don't even have my router up. But don't blame it on the router, you just gotta set these things up right...could be a combination of pc settings and router settings. Unfortunatly i can't explain how to do that unless it's in front of me hehe.

<font color=red>:</font color=red> <font color=white>:</font color=white> <font color=blue>:</font color=blue>

 

[jihiggs]

yea right, let me take a look at that diagnostic. i bet you they are trying to sell a firewall or somthing, when you download that page you probly allow it to run a small program that sends info to their server.

here are my results from dsl reports:
monitor.dslreports.com scanning xxxxxxxxxxxxxxx
does NOT respond to a ICMP ping
does NOT respond to a TCP ping
does NOT respond to a UDP ping
Probing TCP ports with SYN packets
TCP probe finished
Probing UDP ports for echos
UDP probe finished
Scan complete.
Open TCP port 139 was NOT seen
microsoft netbios check skipped

i went to the tomshardware forums and all i got was this lousy signature.

 

[Chooco]

with that test my shields, probe my ports thing. it instantly tested safe as soon as i turned on Zone Alarm to medium security, low security had no change.

i can't run ZA though because i run a few servers on this puter, it lags the hell out of everybody when that program is running....... and the bandwidth transfer makes the CPU usage shoot from 1% all the way up to 70%

NDC from TechIMO.com tested safe and he has the same router as me....without running a software firewall.

<A HREF="http://www.shawnserver.tk" target="_new">Check out my Website</A>

 

[Zlash]

No thier not trying to sell you anything, it's a very well known testing site.

<font color=red>:</font color=red> <font color=white>:</font color=white> <font color=blue>:</font color=blue>

 

[jlanka]

a quick glance at the first picture puzzles me. If you left averything at default settings, then the 66.222.150.188 box should be the wan port on your linksys. That box shouldn't have any SMB shares. Did you verify those results by trying to connect yourself? Sorta sounds to me like they're kinda fibbing. Could be wrong, though. I'd try to verify their results.

<i>It's always the one thing you never suspected.</i>

 

[Chooco]

that IS the REAL IP of my router, i run a game server and a website. that really is my ip

<A HREF="http://www.shawnserver.tk" target="_new">Check out my Website</A>

 

[jihiggs]

dont know what your doing wrong, but here are the results when i ran the test with my linksys router. its probly because you are running with the game and ftp ports open. you cant blame the router for this.

Attempting connection to your computer. . .
Shields UP! is now attempting to contact the Hidden Internet Server within your PC. It is likely that no one has told you that your own personal computer may now be functioning as an Internet Server with neither your knowledge nor your permission. And that it may be serving up all or many of your personal files for reading, writing, modification and even deletion by anyone, anywhere, on the Internet!
Your Internet port 139 does not appear to exist!
One or more ports on this system are operating in FULL STEALTH MODE! Standard Internet behavior requires port connection attempts to be answered with a success or refusal response. Therefore, only an attempt to connect to a nonexistent computer results in no response of either kind. But YOUR computer has DELIBERATELY CHOSEN NOT TO RESPOND (that's very cool!) which represents advanced computer and port stealthing capabilities. A machine configured in this fashion is well hardened to Internet NetBIOS attack and intrusion.
Unable to connect with NetBIOS to your computer.
All attempts to get any information from your computer have FAILED. (This is very uncommon for a Windows networking-based PC.) Relative to vulnerabilities from Windows networking, this computer appears to be VERY SECURE since it is NOT exposing ANY of its internal NetBIOS networking protocol over the Internet.



Port
Service
Status Security Implications

21
FTP
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

23
Telnet
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

25
SMTP
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

79
Finger
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

80
HTTP
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

110
POP3
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

113
IDENT
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

135
RPC
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

139
Net
BIOS
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

143
IMAP
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

443
HTTPS
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

445
MSFT
DS
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!

5000
UPnP
Stealth! There is NO EVIDENCE WHATSOEVER that a port (or even any computer) exists at this IP address!


i went to the tomshardware forums and all i got was this lousy signature.

 

[jlanka]

www.shawnserver.tk resolves to 62.41.22.204
that box doesn't respond to port 139
66.222.150.88 DOES respond to port 139.

They BOTH respond to port 80

BOTH respond to ping

You definitely have stuff exposed. But what is the relationship between those 2 addresses, and why are you using the subnet 66.222.150 or 62.41.22 internally? Or am I totally clueless? How does your lan look?

<i>It's always the one thing you never suspected.</i>

 

[Chooco]

www.shawnserver.tk is run off the computer i'm on now, this puter is 66.222.150.188

i don't know what that other IP is

<A HREF="http://www.shawnserver.tk" target="_new">Check out my Website</A>

 

[slickstaa]

if ur going to be hosting a lot of online games, u prolly want to be set as DMZ (demilitarized zone)
or else u can run into problems where people cant join ur game

 

[jihiggs]

thats what port forwarding is for.

i went to the tomshardware forums and all i got was this lousy signature.

 

[jlanka]

I haven't forgotten about this one (actually it's got me intrigued) but I haven't had time to experiment with mine. Rest assured I eventually will and will post my findings here. Thanks for raising the subject, it's always good to know all the ramifications of the various features of your equipment.

<i>It's always the one thing you never suspected.</i>