General question re configuration of Cisco 801 router.

[G0AOZ]

In order to use some internet linking software called EchoLink, it is apparently necessary to configure to "forward" the UDP ports 5198 and 5199.

What are the implications of doing this?

Will this breach the firewall capabilities within the router?

Should the router be set back to the original configuration after the session using EchoLink in order to preserve the integrity of the firewall?


ROGER - GØAOZ.

 

[marsd]

If someone installed a trojan on one of your machines
or managed to get a redirector/proxy installed on a host
that listened on these ports the ramifications could be
bad.

Otherwise if you are worried about more vanilla sec-
urity issues, some available utilities could possibly gain information through sending udp packets to answering hosts
or servers utilizing this service. I don't know enough about the service itself to tell you if it is a "noisy" one.

Udp is unreliable and easy to spoof if you're not worried about listening to return traffic, so that's another issue.

All in all I'd only really worry if the application security is bad and/or the app is talkative.
You don't want someone sending malformed queries or
setting up a bogus server and snarfing the responding
hosts netmask,etc..in an error reply.

 

[G0AOZ]

Thanks for the info MARSD. I know very little about the app, but will give it a whirl...

ROGER - GØAOZ.