17 May 2018, 10:53

I have just run a scan on the flic hub wifi interface and find quite a few ports open. Some are straight forward (DHCP client) but not sure why these are available on a client device:

  • domain 53/udp 53/tcp
  • ntp 123/udp

and not sure what these all do:

  • ssh 22/udp (yes, udp...)
  • 1234/udp
  • Other UDP ports: 1101, 1885, 16697, 19625, 19632, 20425, 21780, 23780, 23781, 25541, 28465, 30697, 34079, 34433, 36458, 49167, 49190, 50708, 62287, 63420, 63555

UDP is often used for reflection / amplification attacks should someone get access to the device.

Can you provide an explanation of the purpose / services behind these ports and guidance as to how they should be protected.

Many thanks,

Stuart.