dindin;522787 Wrote: > Hi, I tried setting security to Low, but that didn't help. Outbound > policy is set to 'accept' on Medium as well. > > I certainly don't want to accept all inbound requests by keeping the > setting on 'Low'. > > Also when I run diagnostics on the radio it does say OK on all the > ports, see my first post. Which should indicate that the ports are not > blocked. > > So this remains a mystery to me.
Yeeks that's actaully a pretty confusing sucky setup. Guess someone in sales said "make it look secure, add three levels for them to choose! Who cares if it makes sense!" A cheapo generic (ie Linksys/Belkin/etc) router doesn't usually have that setup and doesn't worry about 'Incoming connections: reject' type settings. They do 'address translation' from the internal network to the real internet. So if you have a real IP on the internet of 172.16.2.3, say, machines behind the router will have numbers like 192.168.1.48. When a machine inside starts a connection to outside, the router changes the 'source' from 192.168.1.48 to 172.16.2.3. It also remembers this, so packets coming back to 172.16.2.3 that are on the same ports as the original request get forwarded back to 192.168.1.48. In addition (and this is why the settings are weird), packets that come to 172.16.2.3 that do NOT have an entry in the address translation table are discarded: the router has no idea which machine on your local network they should go to, so it will discard them. This is why, for a server of some sort behind such a router, you need to set up portforward rules, so if someone tries to connect to port 80, it knows to forward it on to the machine you told it to... So, it does effectively block -unsolicited- packets. Solicited replies come through just fine. Which is why those settings are very confusing: you shouldn't need to tell it to reject things, it should just do it. -- snarlydwarf ------------------------------------------------------------------------ snarlydwarf's Profile: http://forums.slimdevices.com/member.php?userid=1179 View this thread: http://forums.slimdevices.com/showthread.php?t=75835 _______________________________________________ Radio mailing list [email protected] http://lists.slimdevices.com/mailman/listinfo/radio
