We installed a remote backup server running Debian Linux in a client’s home. The backup server is also a firewall to protect the home’s Personal Computers. The home network also had a Twonky MediaServer to manage the components of a home theater.
Due to the way the home is wired (and other reasons) the Denon receiver sits outside the firewall in a DMZ behind the internet modem on a separate LAN. This caused the Twonky MediaServer to not be able to connect to the Denon receiver without opening some ports on the firewall. We typically run a closed outbound policy and open ports as needed.
We spent some time trying to research what ports the Denon was using. Unfortunately documentation was lacking so we had to resort to the old fashioned method. Here was the steps we took and the results.
The DMZ network where the Denon resides is on the 192.168.0.0/24 network.
First step was to port scan the network with nmap to find any responding IP’s. The Denon as you can see was kind enough to identify itself.
firewall:/$ nmap -sP 192.168.0.0/24
Results:
Host 192.168.0.102 appears to be up.
MAC Address: 00:00:00:00:00:00 (Denon)
We found the Denon so let’s see what ports are open.
firewall:/$ nmap 192.168.0.102
Starting Nmap ( http://www.insecure.org/nmap/ ) at 2009-01-19 16:19 PST
Interesting ports on 192.168.0.102:
Not shown: 1673 closed ports
PORT STATE SERVICE
23/tcp open telnet
80/tcp open http
443/tcp open https
5000/tcp open UPnP
5001/tcp open commplex-link
6666/tcp open irc-serv
8080/tcp open http-proxy
MAC Address: 00:00:00:00:00:00 (Denon)
Ahh, looks like UPnP, so open it up and test connectivity.
firewall:/# telnet 192.168.0.102 5000
Trying 192.168.0.102…
Connected to 192.168.0.102.
Escape character is ‘^]’.
HDMODE ANALOG