Got it
Huawei Enterprise Support Community
Community Forums Access Network
How to close port 80 from...

How to close port 80 from WAN on Huawei HG8245W5

Created: Dec 13, 2020 09:45:24Latest reply: Dec 13, 2020 10:13:39 1006 7 0 0 0
  HiCoins as reward: 0 (problem unresolved)
View the author 1#

Hello, team!

I have a question.


How can I disable access to ports 80 and 21 from the internet and only allow it from LAN on Huawei HG8245w5? 


In the web administration panel even if I have prohibited 80 and 21 to be accessed from the internet at Security > Device Access Control, I'm able to access the web admin page if the static WAN IP provided by my ISP is used.


Thanks!

Attachment: You need to log in to download or view. No account? Register
securityHG8245W5httpport 80

Like (0) Dislike (0) Favorite(0) Share Report
Previous: B315s-938
Next: DNS Problem
Featured Answers

Recommended answer

(0) (0)
Chenxintao
Admin Created Dec 13, 2020 10:13:39

Hi, friend!


After confirmation, I modified the results of the answer. 


The two services corresponding to ports 80 and 21 are enabled by the ISP through the NMS or a service profile. To disable these two ports, contact the ISP to disable them in the service provisioning. 


The two ports are in the service profile and cannot be modified through the ONT configuration.


Thanks!

View more
  • x
  • convention:

skepticHuaweier
skepticHuaweier Created Dec 16, 2020 12:13:54 (0) (0)
Yes indeed its its auto-provisioned by ACS by my ISP and both http and ssh servers on the gateway are secured with the 'super secure default passwords' that huawei puts in the devices. So that my neibhour can hijack my gateway if he wishes and randomly guesses my IP address which is a static IP and flash a manipulated firmware if he wishes to and do all things with the configuration as he please.  
All Answers
(0) (0)
2#
liqiang185
liqiang185 Admin Created Dec 13, 2020 09:46:20

Dear friend!
Please rest assured that we'll be back with an answer shortly.
View more
  • x
  • convention:
(0) (0)
3#
wissal
wissal MVE Created Dec 13, 2020 09:47:54

Hello,


Please refer to the screenshot below for configuration


2

1

3


Thanks


View more
  • x
  • convention:

skepticHuaweier
skepticHuaweier Created Dec 13, 2020 09:58:36 (0) (0)
I'm not asking for port forwarding. I'm asking how to close the port. When I nmap -Pn 5.xxx.xxx.xxx IP which is the static IP address alloted to me by my ISP I see that '80/tcp open http'. And Indeed its open and it can be accessed via browser from the internet. Imagine the implications of it should it remain exposed witht the super secret default passwords from Huawei.  
skepticHuaweier
skepticHuaweier Created Dec 13, 2020 10:16:05 (0) (0)
Thank you very much for editing and updating the post with relevant information. Much appreciated. I'll try and see this fixes my concern of open port 80 to the internet.  
wissal
wissal Reply skepticHuaweier  Created Dec 13, 2020 10:18:32 (0) (0)
You are welcome my friend
Hope it can help you!  
(0) (0)
4#
Chenxintao
Chenxintao Admin Created Dec 13, 2020 10:13:39

Hi, friend!


After confirmation, I modified the results of the answer. 


The two services corresponding to ports 80 and 21 are enabled by the ISP through the NMS or a service profile. To disable these two ports, contact the ISP to disable them in the service provisioning. 


The two ports are in the service profile and cannot be modified through the ONT configuration.


Thanks!

View more
  • x
  • convention:

skepticHuaweier
skepticHuaweier Created Dec 16, 2020 12:13:54 (0) (0)
Yes indeed its its auto-provisioned by ACS by my ISP and both http and ssh servers on the gateway are secured with the 'super secure default passwords' that huawei puts in the devices. So that my neibhour can hijack my gateway if he wishes and randomly guesses my IP address which is a static IP and flash a manipulated firmware if he wishes to and do all things with the configuration as he please.  
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.