Questions tagged [port-forwarding]
82 questions
8
votes
1 answer
Is port forwarding inherently unsafe?
I had an argument with a person a few months ago when I proposed we forward port 12xyz to an internal SSH server.
The target server was tied down in a manner similar to the one recommended by @stribika at…
![](../../users/profiles/67662.webp)
Rhyven
- 167
- 1
- 2
- 8
8
votes
2 answers
Why is forwarding port 80 more insecure than the others?
I'm doing an internship in a very little company and I need to configure the network. They have a Cisco router. I couldn't find the logs to login so I called their internet provider. Apparently they configured the Cisco router and doesn't allow…
![](../../users/profiles/110133.webp)
Xavier59
- 2,874
- 3
- 17
- 34
6
votes
1 answer
SSH raspberry pi security
I've setup an SSH server on my Raspberry Pi. I use RSA keys to login, I disabled root login, password authentication and I use port forwarding to login from outside my network.
I can see the connection logs from the file /var/log/auth.log but I…
![](../../users/profiles/67932.webp)
Matteo
- 243
- 1
- 7
6
votes
2 answers
Docker port forwarding exposure
I try docker with a simple webapp :
docker run -d -v $(pwd):/app -p 8080:80 image_name
I have docker listen on 8080:
tcp6 0 0 :::8080 :::*
LISTEN 13304/docker
So I can test my web app through localhost:8080
I…
![](../../users/profiles/54126.webp)
kondor
- 229
- 2
- 6
5
votes
2 answers
How can I obtain the internal IP of a computer behind NAT but reachable via certain TCP port?
I want to obtain internal IP of a remote computer behind a NAT that I can reach by using some port, say myhost.farfar.away port 11122TCP:
C:\>telnet myhost.farfar.away 11122
SSH-2.0-OpenSSH_6.6.1p1 Ubuntu-2ubuntu2
As you see, there is a SSH server…
![](../../users/profiles/38112.webp)
Sopalajo de Arrierez
- 641
- 2
- 7
- 16
5
votes
2 answers
Hardening/Security considerations for torrent clients
I am running Synology's DSM torrent client on a NAS. As I have to (?) open and forward one UDP port for DHT and another one (UDP/TCP) for data transmission I am exposing myself to threats originating from the internet. If I don't, I circumvent the…
![](../../users/profiles/61182.webp)
Matthias Güntert
- 265
- 2
- 11
5
votes
2 answers
Port forwarding with 0.0.0.0, any threat?
I set up on our company's firewall (fortigate100d) a port forwarding to one of our Internal services.
As we don't have a static public IP I used 0.0.0.0 as an external IP so the remote users can access the internal service through a DDNS service…
![](../../users/profiles/21144.webp)
elsadek
- 1,782
- 2
- 17
- 53
4
votes
1 answer
Question about IPv6, NAT, firewall, port forwarding, upnp and security
In the next months/years my ISP might give me IPv6 for my home connection. But what are the security implications? Will local network servers/embedded devices be accessible from the whole internet?
In IPv4 you were protected by the NAT. Many…
![](../../users/profiles/94428.webp)
H. Idden
- 2,988
- 1
- 10
- 19
3
votes
2 answers
Arp Spoofing Causing Dropped Connections
I have had a lecture today based on Arp Spoofing.
However, i can not get it to work.
Scenario:
My laptop - running kali
Target laptop (housemate - with permission) - running windows 8
Commands entered in order:
echo 1 >…
![](../../users/profiles/5481.webp)
Dr.Pepper
- 241
- 3
- 7
3
votes
1 answer
Does accessing a port on a remote server via ssh tunnel improve security?
The idea is the following:
I have a port open (P) on a remote machine (R) with a service application running which is listening on (P). I would like to connect from a client machine to the service application on the remote machine.
Possibility 1:
I…
![](../../users/profiles/223564.webp)
Max1
- 131
- 1
3
votes
1 answer
How do hackers use RATs without their server/IP being revealed?
When hackers put trojan horses on someones PC, those programs (which are, by definition, just stealthy RATs with some... extra features) need to communicate with them somehow. A direct peer-to-peer connection to their own PC is obviously impossible…
![](../../users/profiles/217660.webp)
DLCom
- 133
- 4
3
votes
1 answer
Port forwarding to ip address in LAN that is not available
Consider the following situation:
In a LAN the router is configured to forward one incoming port from the WAN to a specific local ip-address/port.
My question is, how is the security in this situation impacted compared to a router, which does not…
![](../../users/profiles/164974.webp)
oh.dae.su
- 256
- 3
- 9
3
votes
2 answers
Server Side request forgery (SSRF) explanation
I am looking to gain a better understanding of the SSRF vulnerability.
I have googled and watched YouTube tutorials but they all show advanced techniques that are difficult to understand.
I am curious as to how to connect to a website with my…
![](../../users/profiles/181701.webp)
Rifat Shommo
- 51
- 1
- 1
- 4
3
votes
1 answer
Port-forwarding to a web server on Raspberry Pi
I've recently created a relatively simple smart Christmas tree which is a Raspberry PI Zero W powered LED strip.
In order to control it via IFTTT webhooks, I've started a lightweight flask server on the Raspberry Pi - on a specific port with several…
![](../../users/profiles/58553.webp)
alecxe
- 1,515
- 5
- 19
- 34
3
votes
0 answers
How safe is it to host my own HTTP server on port 80?
I've recently finished programming my own HTTP server to host a simple static website. As of now its functionality is limited to sending a single response to the first GET request which asks for the html - and nothing more. Due to its simplicity I…
![](../../users/profiles/147368.webp)
mythril
- 31
- 2