What's new
Carbonite

South Africa's Top Online Tech Classifieds!
Register a free account today to become a member! (No Under 18's)
Home of C.U.D.

Are open ports a risk?

I don’t use the default configuration of MT.
I remove all their rules created and start over.

I’m that locked down that for me to use the FNB banking app I had to open the port for it


Sent from my iPhone using Tapatalk
 
@iamgigglz , sorry I'm so used to having handful's of i3's / i5's and board at my disposal that I forgot that for many its something they need to still acquire. I can't give you a concrete answer unfort but I'd go on a limb and say that the USG is built from the ground up as a router, with some firewall stuff added on, Pfsense is built from the ground up as a firewall that can also do routing. One advantage would be less CPU overhead for the USG. If you're in CT, I can lend you a i3 system to play with.

Haha yeah it must be nice to just have machines like that lying around. I have a Lenovo M73 4th gen i3 running Plex, Sonarr, UniFi controller etc - adding Pfsense would probably kill it.
I understand that Pfsense if probably a way better firewall than the USG could ever be (I mean if Linus uses it then surely) but for the degree of intrusion protection, volume of traffic and level of logging/monitoring that I need, methinks the USG is plenty. It’s still a step up from your average home router.


Sent from my iPad using Tapatalk
 
Haha yeah it must be nice to just have machines like that lying around. I have a Lenovo M73 4th gen i3 running Plex, Sonarr, UniFi controller etc - adding Pfsense would probably kill it.
I understand that Pfsense if probably a way better firewall than the USG could ever be (I mean if Linus uses it then surely) but for the degree of intrusion protection, volume of traffic and level of logging/monitoring that I need, methinks the USG is plenty. It’s still a step up from your average home router.


Sent from my iPad using Tapatalk
It is I wont lie hehe. Excep space becomes a bitch :p Watch the vid, very interesting. I watch the vids from Lawrence Systems regularly, as they're very technically inclined, but break things down and explain things very well IMHO.
 
So on this topic, I decided to fire up my pen testing system and do a scan of my new Asus modem.

I found so many open ports that it might as well be a busted dam.
Spent the next hour trying to close all the ports and find the settings in the Asus firmware.
Very little could be done. Turned Upnp off and enabled the firewall. Not much changed. * Sarcastic Horaaay*

I cracked my WPS number in less that 30 seconds.
 

Users who are viewing this thread

Latest posts

Back
Top Bottom