Ports 135, 139 and 445 are closed by default on the modem router.

"How do I set up my router to keep these ports stealthy?"
Not quite sure what you exactly want. Do you want to open these ports?

On the GRC website it states the following:
[quote]Solicited TCP Packets: RECEIVED (FAILED) — As detailed in the port report below, one or more of your system's ports actively responded to our deliberate attempts to establish a connection. It is generally possible to increase your system's security by hiding it from the probes of potentially hostile hackers[/quote]

So I want to have my router hidden from the internet if somebody decides to run a port-scan to look for active IP's.

Oh and port 7547 seems to be open on my router...how do I close it?

Praeses wrote

Oh and port 7547 seems to be open on my router...how do I close it?

Well, it is quite weird. Are you still using GRC's Shields Up! website to test it and get this result?

Sorry for taking so long to reply

It's still open when I use the internet through my router's gateway. If I connect with a PPPoE connection (bridged mode) from Windows it's closed, as I guess my OS's firewall then blocks it as it by-passes the firewall on the router. So it's definitely a problem on the router's side.

Praeses wrote

Sorry for taking so long to reply

It's still open when I use the internet through my router's gateway. If I connect with a PPPoE connection (bridged mode) from Windows it's closed, as I guess my OS's firewall then blocks it as it by-passes the firewall on the router. So it's definitely a problem on the router's side.

Right, it seems that TP-Link needs to update the firmware to close Port 7547 on the modem.
I contacted with TP-LINK support before, and they told me that the modem could not hide the ports that had been opened. :(
And to further secure my modem, they suggested me turn on firewall and SPI on the modem.

Snowy wrote

Right, it seems that TP-Link needs to update the firmware to close Port 7547 on the modem.
I contacted with TP-LINK support before, and they told me that the modem could not hide the ports that had been opened. :(
And to further secure my modem, they suggested me turn on firewall and SPI on the modem.

Those are turned on on my router.

Do they read these forums?

Hi, all.
I find out a new beta firmware for TD-W8961ND_ V3 on the TP-Link website. Maybe Port 7547 can be closed by firmware update.
Here is the download link of the beta firmware:
http://www.tp-link.com/resources/software/TD-W8961ND_v3_Beta_130705.zip

And you can follow this FAQ to upgrade the firmware.
http://www.tp-link.com/en/article/?faqid=107

alisa wrote

Hi, all.
I find out a new beta firmware for TD-W8961ND_ V3 on the TP-Link website. Maybe Port 7547 can be closed by firmware update.
Here is the download link of the beta firmware:
http://www.tp-link.com/resources/software/TD-W8961ND_v3_Beta_130705.zip

And you can follow this FAQ to upgrade the firmware.
http://www.tp-link.com/en/article/?faqid=107

Thanks!

Here's the changelog:

This BETA firmware of TD-W8961ND v3 has solved these following problems:

1:I can't use the bonjour application like airprint and WiFi sync, when iPhone is connected to TD-W8961ND v3.

2:My PC can't acquire an IP address from an AP which is connected to TD-W8961ND v3 in universal repeater mode.

3:The DHCP lease of IOS device offered by TD-W8961ND v3 is too long.

4:My PC can't go to Internet if it is originally connected to an AP, and now it is connected to TD-W8961ND v3.

5:The port of 7547 is still open even when CWMP function is disabled.

EDIT: I can confirm that 7547 now has "STEALTH" status!!

Praeses wrote

Thanks!

Here's the changelog:

This BETA firmware of TD-W8961ND v3 has solved these following problems:

1:I can't use the bonjour application like airprint and WiFi sync, when iPhone is connected to TD-W8961ND v3.

2:My PC can't acquire an IP address from an AP which is connected to TD-W8961ND v3 in universal repeater mode.

3:The DHCP lease of IOS device offered by TD-W8961ND v3 is too long.

4:My PC can't go to Internet if it is originally connected to an AP, and now it is connected to TD-W8961ND v3.

5:The port of 7547 is still open even when CWMP function is disabled.

EDIT: I can confirm that 7547 now has "STEALTH" status!!

what is this port and is it worth upgrading to a BETA firmware just to hide it? I use a iphone, android tablet, ps3 and pc, all wireless, and would not want to have connection issues with this router... outside of the existing issues where all other devices can lose connection if something is hogging the bandwidth, like my ps3 running netflix or if my pc is downloading something quite large.

my firmware is Firmware Version: 3.0.0 Build 120524 Rel.05221

edit: cant upgrade my fw anyways, there is no fw page in the router (the menu text is there but no page, just:


Error Message:

ERROR: FAIL TO UPDATE DUE TO... ERROR: FAIL TO UPDATE DUE TO...