標題: WANNACRY block port from Router(直接叫router 封) [打印本頁]
作者: skywolf08 時間: 2017-5-15 18:21 標題: WANNACRY block port from Router(直接叫router 封)
本帖最後由 skywolf08 於 2017-5-16 12:45 編輯
Netgear
https://kb.netgear.com/24054/How ... enie-user-interface
Link Sys
http://www.linksys.com/ph/support-article?articleNum=136710
Asus:
http://www.noip.com/support/know ... g-on-asus-rc-ac66u/
其他router: 自己login 睇menu.
最好在router直接block TCP/UDP: 445, 135-139,
當然在windows firewall/antivirus/internet security, 一樣加多inbound rules (block ports) 445, 135-139 ( 要2條.. 1. tcp 2. udp)
If you use network services(for company) (e.g. NAS, plex, network printer, server), You should be consider what port to shut down(without disturbing others. Do not make them complain about they cannot access the server.) (If you only have 1-2 computers at home and no files sharing, just shut the ports)
If you block 445, 135-139, you may not use any network printer, server, nas sharing. (The good thing is you can stop the worm spreading in your intranet)
作者: cckwan 時間: 2017-5-15 19:59
如果公司係 PCCW modem -> PCCW Juniper router -> 2部router (CISCO and Tenda)
咁我係咪要入PCCW個ROUTER BLOCK PORT?
作者: skywolf08 時間: 2017-5-15 20:11
Is all internet connect from PCCW juniper router,(and cisco/tenda)?
If you cannot access the pccw router, then block from cisco and tenda.
作者: slt 時間: 2017-5-15 20:28
我件老爺 router 無得封,我只好 forward 佢去 192.168.2.250:44300 之類,無電腦用緊的 ip 和 port
via HKEPC Reader for Android
作者: skywolf08 時間: 2017-5-15 20:38
Then buy a new router!!!
作者: cheongt 時間: 2017-5-16 07:17
咁華碩router又點封port,thx
作者: fyhmps 時間: 2017-5-16 10:16
想請教一下,喺無 set DMZ 主機或者 NAT 情況下
Default 唔係乜 port 都 block 晒既咩??
作者: skywolf08 時間: 2017-5-16 10:53
本帖最後由 skywolf08 於 2017-5-16 12:50 編輯
Default 唔係乜 port 都 block 晒既咩?? YEs
The intranet still work even if you you did not set dmz.
If someone spread the cold in the office, then it is another issue.
作者: tinypig 時間: 2017-5-17 01:38
提示: 作者被禁止或刪除 內容自動屏蔽
作者: chue 時間: 2017-5-17 05:28
有用,晚D 照住 MENU 加