I'm looking for advice on how to best secure my network. I've been reading up on how ports work, syn ack packets etc and ways people can scan your open ports. I've downloaded nmap but I find it hard even with guides to determine much from the output so I also used netstat on my windows pc. I found this a little easier to pick apart and found a couple of established connections to outside ip addresses. I'm looking into these, one I know I opened for a support session involving acronis, was wondering if I should now close that port, is this now open anytime they wish or would I have to grant access again? Any listening ports were to my own addresses on hardware (0.0.0.0.0 and 127.0.0.1ort number)
I understand there's a standardised port for http, emails in and out, ssh and so on which can be changed providing the client I use allows me to specify which port to use. I have a few questions that I'm hoping someone can answer or offer advice.
1. Is it wise to alter these standard ports? Does it offer much in the way of security (by obscurity) or are there better ways (decent firewall)
2. If this is a good move, what range would be the best to use (registered or dynamic/private)
3. Is messing with well known registered ports going to throw a few spanners in the works I.e. WhatsApp, Gmail etc.
Currently I use a few android phones and tablets, a couple of PCs and a raspberry pi for homeseer. They're all used for Internet surfing, email, WhatsApp etc (pi is homeautomation only). Im using ssh to setup my pi but once that's done I'll disable ssh so that cannot be accessed apart from a physical port. I haven't enabled WiFi on the pi as I don't really have a need for it currently. Say I wanted to access my homeseer gui from another network, I'd have to setup a static ip and setup port forwarding. Would this be better left alone (if I can manage without it) or are there good secure ways of doing so? (Vpn)
I'd like to leave the pi automation completely isolated from the Internet for security but im using devices that connect to the Internet that can introduce virus, malware etc into my lan network so just looking for some good preventative measures without disrupting the normal operation of things.
Any knowledge and wisdom is appreciated
I understand there's a standardised port for http, emails in and out, ssh and so on which can be changed providing the client I use allows me to specify which port to use. I have a few questions that I'm hoping someone can answer or offer advice.
1. Is it wise to alter these standard ports? Does it offer much in the way of security (by obscurity) or are there better ways (decent firewall)
2. If this is a good move, what range would be the best to use (registered or dynamic/private)
3. Is messing with well known registered ports going to throw a few spanners in the works I.e. WhatsApp, Gmail etc.
Currently I use a few android phones and tablets, a couple of PCs and a raspberry pi for homeseer. They're all used for Internet surfing, email, WhatsApp etc (pi is homeautomation only). Im using ssh to setup my pi but once that's done I'll disable ssh so that cannot be accessed apart from a physical port. I haven't enabled WiFi on the pi as I don't really have a need for it currently. Say I wanted to access my homeseer gui from another network, I'd have to setup a static ip and setup port forwarding. Would this be better left alone (if I can manage without it) or are there good secure ways of doing so? (Vpn)
I'd like to leave the pi automation completely isolated from the Internet for security but im using devices that connect to the Internet that can introduce virus, malware etc into my lan network so just looking for some good preventative measures without disrupting the normal operation of things.
Any knowledge and wisdom is appreciated
Comment