D-Link DI-804HV Router Firewall SPI Function

From: Charles (cmelias_at_woh.rr.com)
Date: 12/28/03

• Next message: sponge: "Re: Adware Question"
• Previous message: Wolfgang Kueter: "Re: Red Hat Firewall vs ipchains"
• Next in thread: NeoSadist: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: NeoSadist: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: NeoSadist: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: Duane Arnold: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: J Jay: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: David: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: 28 Dec 2003 14:13:57 -0800

All,

I purchased a D-Link DI-804HV router in order to increase the security
of my home computer. One of the features that I hoped would help is
stateful packet inspection. However, when I did a security scan on
the Sygate Online Services website it found the "service" SOURCE PORT
(port number 57387) CLOSED--not BLOCKED, and the site gave this
additional information: "This is the port you are using to communicate
to our Web Server. A firewall that uses Stateful Packet Inspection
will show a 'BLOCKED' result for this port".

I contacted D-Link tech support, but the person I talked with seemed
to be confused when I told her about the problem. They are supposed
to have someone else call me--I am not holding my breath. My question
is: Why doesn't the port in question show "BLOCKED"? I have the SPI
function enabled. Is this a router hardware problem or do I
misunderstand the proper function of SPI?

Charles

---

• Next message: sponge: "Re: Adware Question"
• Previous message: Wolfgang Kueter: "Re: Red Hat Firewall vs ipchains"
• Next in thread: NeoSadist: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: NeoSadist: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: NeoSadist: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: Duane Arnold: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: J Jay: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Reply: David: "Re: D-Link DI-804HV Router Firewall SPI Function"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: ssh gives "Permission denied, please try again" ... It would be possible to arrange that but it's a bit tricky and there are security implications for your network. ... tried to ssh to that but it said port 22 was blocked. ... due to my router; I therefore tried to open ssh access in the router and ... (uk.comp.os.linux) Re: Newbie: Port forwarding and triggering on Linksys BEFSW11 ... >> points to the BEFW11S4 router. ... > Linksys's Port Forwarding table, ... Port Triggering tells the router to be activated or "triggered" to keep ... I understand that the lessor of the two as a security risk is triggering, ... (comp.security.firewalls) Re: NFS through a wireless router ... I purchased a wireless router to replace my ... > cannot get my NFS connections to load through the NAT of the new device. ... If you're using NAT then it'll be translating the source port from something ... This is done for security reasons ... (comp.os.linux.networking) Re: installing wireless router ... it's a RJ45 port, not USB ... so I'm not paranoid about security. ... router with a USB cable. ... (alt.internet.wireless) Re: Its War! ... they know which port is doing what. ... Once they have that MAC address, ... security seriously, they have tied your MAC address to you. ... log into the router for Internet, the mere fact that you can get ... (microsoft.public.windowsxp.general)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.security.firewalls  > 2003-12