-
Join the MyBroadband community
South Africa’s biggest forum. Discuss, discover, and connect with thousands of members.
-
Question of the Day: What is the ultimate French toast topping?
Port 5555 Open
- Thread starter 3Gee
- Start date
What do you mean it opens it on your network?
I assume you mean that device listens on port 5555.
Whether that is safe or not is not dependent on the port but rather what services run on it. You could run ssh or ssl on port 5555 with multi factor authentication and it would be considered secure or you could run telnet with default username and password of admin and it would be insecure.
If you are not port forwarding from the internet then you only have to worry about your internal network which would drastically reduce the attack surface.
If it is breaking out on port 5555 and possibly creating a reverse tunnel then you might be really worried about that.
It really is all about what is happening on that port rather than the port itself.
I assume you mean that device listens on port 5555.
Whether that is safe or not is not dependent on the port but rather what services run on it. You could run ssh or ssl on port 5555 with multi factor authentication and it would be considered secure or you could run telnet with default username and password of admin and it would be insecure.
If you are not port forwarding from the internet then you only have to worry about your internal network which would drastically reduce the attack surface.
If it is breaking out on port 5555 and possibly creating a reverse tunnel then you might be really worried about that.
It really is all about what is happening on that port rather than the port itself.
killerbyte
Expert Member
Check that uPnP is turned off on your router.
3Gee
Executive Member
- Joined
- Jul 16, 2005
- Messages
- 5,509
- Reaction score
- 1,659
"Cannot open the page because the network connection was lost "
Try from a different internet connection.
3Gee
Executive Member
- Joined
- Jul 16, 2005
- Messages
- 5,509
- Reaction score
- 1,659
The same result.
Pineapple Smurf
Pineapple Beer Connoisseur
- Joined
- Aug 2, 2016
- Messages
- 47,110
- Reaction score
- 62,880
Do you need Port 5555?
en.wikipedia.org
List of TCP and UDP port numbers - Wikipedia
3Gee
Executive Member
- Joined
- Jul 16, 2005
- Messages
- 5,509
- Reaction score
- 1,659
When running a port scan on my router , 5555 does not appear
I dont see why it would. The router does not have port 5555 open and if you wanted to test you would need to from the internet to see if port 5555 is exposed and port forwarded. But you have confirmed from the configuration it is not.
Again, focus on what the actual service is running on port 5555 on the smart device and then narrow down from there the security risk. The port number is not particularly relevant (although it sometimes can lend itself to certain protocols)
3Gee
Executive Member
- Joined
- Jul 16, 2005
- Messages
- 5,509
- Reaction score
- 1,659
What i have done is paused all data through the device.
Automations are still working and i can still manually control it with Homekit.
itareanlnotani
Executive Member
It's safe.
Local network is only accessible to local computers / devices.
I tend to trust equipment on my local network, as I own it.
I do make vlan's for my IoT crap though, so they can't talk to other stuff "just in case".
Just make sure upnp isn't forwarding that port on your router, and that that port isn't accessible on your wan ip.
whatsmyip.com or similar will give you your wan ip address. You can scan that with a network scanner eg https://pentest-tools.com/network-vulnerability-scanning/tcp-port-scanner-online-nmap#
or https://www.ipvoid.com/port-scan/ (check 5555 )
If anything is open, then you can configure your router appropriately not to open sesame..
Conversely if you do need remote access to your lan, I find wireguard quite good. (eg install on a desktop and a laptop for remote access when out of the huis).