Linksys Firmware 1.46.00

Semantics -- What's the problem if outside users can't access LAN nodes ?

BTW: I get BLOCKED (This port has not responded to any of our probes. It appears to be
completely stealthed) on my BEFSR81 with v2.45.10 FirmWare.

Dave




"Kleeb" <> wrote in message
news:...
| Hello,
|
| I thought I might try updating the firmware inside my BEFSR41 Cable Router.
| The update, 1.46.00, Jun 24 2004, installed ok, but I was surprised to see
| that on 'test' sites such as www.grc.com and http://scan.sygate.com/, that
| all my main ports were now showing as 'closed', rather than
| blocked/stealthed.
|
| Is this just me or is anybody else getting this too ?
|
| Cordially,
|
| Kleeb.
|
|

David H. Lipman

You might try resetting router defaults and then do a long reset of router
by holding reset button in for 30 seconds. Then trying again. Also how did
you flash the firmware? With the TFTP program or through the routers web
interface? There have been some reports of using an older TFTP program and
not getting good results. I suggest getting the latest TFTP program from
Linksys and/or using the routers web interface to flash with. It has been
reported that using the web interface is the better way to go anyway.

FWIW, you might find that the 1.46.00 firmware might or might not cause you
problems. Many users are having to actually go all the way back to 1.44.2
to get rid of problems caused by newer firmware versions. Linksys released
a 1.45.11 version that seemed to cause DHCP renew problems for many users.
That was the first version out since 1.45.7 version started having troubles
earlier this year.

YMMV

Jbob

I tell all my clients to block TCP/UDP ports 135~139 and 445 on any Router model.

On Linksys BEFSR41 and BEFSR81 v1/v2 models you do this at URL:
http://192.168.1.1/Filters.htm

Dave




"Kleeb" <> wrote in message
news:...
| On Wed, 28 Jul 2004 23:06:19 GMT, "David H. Lipman"
| <DLipman~nospam~@Verizon.Net> schrieb:
|
| >Semantics -- What's the problem if outside users can't access LAN nodes ?
| >
| >BTW: I get BLOCKED (This port has not responded to any of our probes. It appears to be
| >completely stealthed) on my BEFSR81 with v2.45.10 FirmWare.
|
|
| No problem really, just curious as to why with an 'update', I seem to be
| more visible now. I did get *some* stealthed ports. These were the ones I'd
| added to my private port ranges. They are : 135-139, and 445.
|
| Cordially,
|
| Kleeb.
|
|

David H. Lipman

Hello,

I thought I might try updating the firmware inside my BEFSR41 Cable Router.
The update, 1.46.00, Jun 24 2004, installed ok, but I was surprised to see
that on 'test' sites such as www.grc.com and http://scan.sygate.com/, that
all my main ports were now showing as 'closed', rather than
blocked/stealthed.

Is this just me or is anybody else getting this too ?

Cordially,

Kleeb.

Kleeb

On Wed, 28 Jul 2004 23:06:19 GMT, "David H. Lipman"
<DLipman~nospam~@Verizon.Net> schrieb:

>Semantics -- What's the problem if outside users can't access LAN nodes ?
>
>BTW: I get BLOCKED (This port has not responded to any of our probes. It appears to be
>completely stealthed) on my BEFSR81 with v2.45.10 FirmWare.


No problem really, just curious as to why with an 'update', I seem to be
more visible now. I did get *some* stealthed ports. These were the ones I'd
added to my private port ranges. They are : 135-139, and 445.

Cordially,

Kleeb.

Kleeb

On Wed, 28 Jul 2004 18:21:17 -0500, "Jbob" <> schrieb:

>You might try resetting router defaults and then do a long reset of router
>by holding reset button in for 30 seconds. Then trying again. Also how did
>you flash the firmware? With the TFTP program or through the routers web
>interface? There have been some reports of using an older TFTP program and
>not getting good results. I suggest getting the latest TFTP program from
>Linksys and/or using the routers web interface to flash with. It has been
>reported that using the web interface is the better way to go anyway.
>
>FWIW, you might find that the 1.46.00 firmware might or might not cause you
>problems. Many users are having to actually go all the way back to 1.44.2
>to get rid of problems caused by newer firmware versions. Linksys released
>a 1.45.11 version that seemed to cause DHCP renew problems for many users.
>That was the first version out since 1.45.7 version started having troubles
>earlier this year.

Thanks for the tips. I did use the TFTP program.

I will try a re-flash using the web interface. I had ping problems with a
certain previous version of the firmware once before, could well have been
1.45.11, although I can't be certain. I did have 1.44.2 installed before my
current upgrade.

Cordially,

Kleeb.

Kleeb

Interesting !

That explains why Linksys has posted NEW TFTP clients. However, I use a TFTP client
obtained from Linksys, v1.255, that is not on the FTP site. It allows you to enter a retry
value (I set it to 3) so if it fails, it will try X number of times. I have yet to
experience a problem with this TFTP client with the Linksys Routers I have upgraded.

Dave




"Kleeb" <> wrote in message
news:...
| On Wed, 28 Jul 2004 18:21:17 -0500, "Jbob" <> schrieb:
|
| >You might try resetting router defaults and then do a long reset of router
| >by holding reset button in for 30 seconds.
|
| <snip>
|
| > It has been reported that using the web interface is the better way to go
| > anyway.
|
| Yep, that did it. Thanks. Now I'm even more insignificant than before.
|
| I upgraded via the web interface, and I also reset the router as you
| suggested.
|
| Interestingly, http://www.grc.com reports IDENT as closed, whilst
| http://scan.sygate.com/ says it is blocked/stealthed. Both sites return the
| correct IP address. All other ports are now blocked/stealthed, or so the
| above sites report.
|
| Thanks again.
|
| Cordially,
|
| Kleeb.
|
| --
| Inventory :
| 2 Amulets Of Clue Avoidance
| 1 Fact Deflection Shield
| 3 Spell Lames
|

David H. Lipman

Aren't News Groups great !

I love how much I get from peer posters.

Dave





"Kleeb" <> wrote in message
news:...
| On Wed, 28 Jul 2004 23:23:43 GMT, "David H. Lipman"
| <DLipman~nospam~@Verizon.Net> schrieb:
|
| >I tell all my clients to block TCP/UDP ports 135~139 and 445 on any Router model.
| >
| >On Linksys BEFSR41 and BEFSR81 v1/v2 models you do this at URL:
| >http://192.168.1.1/Filters.htm
|
| Yes, I actually found that out in this group a while ago. I've also changed
| the default subnet, if that's the right terminology (192.168.1.xxx) as well.
|
| Cordially,
|
| Kleeb.
|

David H. Lipman

On Wed, 28 Jul 2004 18:21:17 -0500, "Jbob" <> schrieb:

>You might try resetting router defaults and then do a long reset of router
>by holding reset button in for 30 seconds.

<snip>

> It has been reported that using the web interface is the better way to go
> anyway.

Yep, that did it. Thanks. Now I'm even more insignificant than before.

I upgraded via the web interface, and I also reset the router as you
suggested.

Interestingly, http://www.grc.com reports IDENT as closed, whilst
http://scan.sygate.com/ says it is blocked/stealthed. Both sites return the
correct IP address. All other ports are now blocked/stealthed, or so the
above sites report.

Thanks again.

Cordially,

Kleeb.

--
Inventory :
2 Amulets Of Clue Avoidance
1 Fact Deflection Shield
3 Spell Lames

Kleeb

On Wed, 28 Jul 2004 23:23:43 GMT, "David H. Lipman"
<DLipman~nospam~@Verizon.Net> schrieb:

>I tell all my clients to block TCP/UDP ports 135~139 and 445 on any Router model.
>
>On Linksys BEFSR41 and BEFSR81 v1/v2 models you do this at URL:
>http://192.168.1.1/Filters.htm

Yes, I actually found that out in this group a while ago. I've also changed
the default subnet, if that's the right terminology (192.168.1.xxx) as well.

Cordially,

Kleeb.

Kleeb