New Dlink Wireless Router Securtiy

[curoius]

Hi,

Today I purchased this router http://

A nmap scan of the WAN ip shows two ports open

PORT STATE SERVICE
80/tcp open http
52869/tcp open unknown

I am a little confused. Are these ports open to the outside WAN or am I simply getting false positives because I am scanning from my own PC ?

 

[Tom Farrow]

We can't tell. Remember all traffic goes through your router to connect to the WAN. Your router decided what to do with it.

Run a traceroute to your WAN IP (from the command line, don't use a web tool, that'll give false results) and give us the results, we should be able to help then. It really depends on how advanced the router is. Does it forward everything, or does it check each packet? A traceroute can let us figure that out.

 

[curoius]

We can't tell. Remember all traffic goes through your router to connect to the WAN. Your router decided what to do with it.

Run a traceroute to your WAN IP (from the command line, don't use a web tool, that'll give false results) and give us the results, we should be able to help then. It really depends on how advanced the router is. Does it forward everything, or does it check each packet? A traceroute can let us figure that out.

Let me describe my network. This is a local cable ISP. They provide direct CAT5 cable connection to people's home. Meaning you may not use a router if dont want to.

Users are not directly exposed to the Internet. This ISP maintains their own firewall which I found out by visiting grc.com but anybody can run run a port scan on your PC if if are on the same subnet. This is nothing but a simple LAN connection.

They main maintain a http authentication server, users type in their username/password and they login.

My WAN IP is nothing but private IP address of 172.16.XX.XXX.

$ traceroute 172.16.xxx.xxx
traceroute to 172.16.xxx.xxx (172.16.xxx.xxx), 30 hops max, 60 byte packets
1 172.16.xxx.xxx (172.16.xxx.xxx) 0.690 ms 1.020 ms 1.759 ms