Bigclive

Port 7547.

10 posts in this topic

I've just set up a new Netgear D1500 router and performed a routine network test on it. It's failing on port 7547 being open to the Internet, and apparently this is commonly used by service providers to allow settings to be updated. But apparently it can also be used for malicious purposes.

 

Is this a security risk? I can't seem to find any way to close that port in the routers settings.

Share this post


Link to post
Share on other sites

It's likely baked into the firmware so unless they've released a version that plugs it, you wont be able to close it.

 

Would just blackhole any traffic received on that port to an unused IP outside your DHCP range personally. Dirty fix but would be better than having it open.

Share this post


Link to post
Share on other sites

"Would just blackhole any traffic received on that port to an unused IP outside your DHCP range personally."

 

I'm not even sure how I would do that.

 

Some online testing suggests that the port is open but not responding to probes. But it still leaves me feeling a bit uneasy. Maybe it's time for me to grow up and get a proper high-class router.

Share this post


Link to post
Share on other sites

It's for use with TR-69 which is a method that allows ISPs or other approved parties to reconfigure the router remotely. This probably won't be configured but still active and listening (basically a web service). I'd see if you can disable TR-69 or alternatively just make sure the router firmware is kept up to date.

Share this post


Link to post
Share on other sites

To quote from that web page:-

 

"Your ISP should not allow someone from the public internet to connect to your router’s port 7547. Only your ISP should be able to access this port to manage your home router. They have the ability to configure their network to prevent outsiders from accessing that port. Many ISPs do not block public access to port 7547."

 

I can't close that port on my router and it fails the test.

Share this post


Link to post
Share on other sites

I don't think it just affects Netgear equipment though.

Share this post


Link to post
Share on other sites

I contacted Sure and asked about it.  They sent me the following reply:-

Please use https://portforward.com/, This has guides and instructions to open ports on your router. At present Sure do not block any ports.

The site linked to has instructions for opening ports on routers, but the one in question is not listed so can't be closed.

 

Any suggestions for ordinary down to earth ADSL routers that I should consider?

Share this post


Link to post
Share on other sites

Just get a Draytek Clive.

One or two ISPs across are starting to insist you use their router and deny you the username and pw for the connection to enforce it. Voda is a prime example and it has cost them a lot of business as a result including mine.

 

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now