Open ports

coopersim · 13 May 2011 at 23:56

How safe is my network by opening two ports inbound in the 8000 range?

23JMZ07 · 14 May 2011 at 01:16

What for?

coopersim · 14 May 2011 at 01:20

For me to be able to access a device from outside my network

Craig321 · 14 May 2011 at 01:21

Depends how safe the software on the device is really.

The place you're going to be accessing this device from, is it from work? I.e. somewhere with a static IP? If so, set up your firewall to only allow that address.

coopersim · 14 May 2011 at 01:30

It's an inbuilt web server on an IP Camera.

Good plan on the static ip, but we've got dynamic IP's

ncjok · 14 May 2011 at 01:31

Packets don't just traverse a firewall and then run amok on your local network, they are destined for something - an application or service. Hypothetically, if an attacker can establish the identity of the listening application (you might be obscuring this to some degree by using a non-standard port) and that it has an exploitable vulnerability, then yes, you are 'less safe'.

What it is that you may be at risk from, however, depends entirely upon the software in question.

23JMZ07 · 14 May 2011 at 01:55

coopersim said:
It's an inbuilt web server on an IP Camera.

Good plan on the static ip, but we've got dynamic IP's

Can you not give it a static IP? Make the DHCP pool smaller and give it an IP address outside this range.

coopersim · 14 May 2011 at 02:00

I'm not in a position to request that unfortunately