Disable Verizon Port 4567 which gives remote access

Posts: 1
Registered: ?07-17-2016
Re: Guy accessed remote administration port 4567 on my router. Thanks, Verizon!
?
07-17-2016 01:15 PM Message 14 of 15 (14,672 Views)
You can disable port 4567 and Verizon's remote access by performing the following.
Please note, you might need to re-enable it if you ever need their technicians to
diagnose a problem in the future. 1) Login to the web admin interface on your VZ
router.
2) Select Advanced from the menu at the top (answer Yes to continue).
3) Select Local Administration from the list in the main panel.
4) Enable Primary Telnet on port 23 and hit Apply.
5) Telnet to your VZ router and use the same web admin interface login credentials.

6) Enter the following at the the prompt once authenticated:

conf set cwmp/enabled 0
conf reconf 1
7) Close down the telnet connection
8) Disable the Primary Telnet on port 23 by repeating steps 1-4, but deselecting
the option in step 4.
Re-enabling is possible by repeating the above and changing the cwmp/enabled value
to 1 in step 6.

===================

How I got everything working with my own router on FiOS Quantum

Here is the simple cheat sheet version , aka network diagram:
http://imgur.com/pIHMhUj

steps

prerequisite: your internet must be provisioned over Ethernet so you can use the
cat 5 port on the ONT.

1: reset everything, hook up only verizon router over wan port to ont.

2: make sure internet works, make sure VOD works, make sure you have guide data
etc, test widgets, if something is broken, call verizon to troubleshoot.

3: log into verizon router and make a note of any ports that are forwarded to the
various DVR and set top boxes.

4: Disconnect the verizon router's wan cable from the ONT, and insert it into a LAN
port on your router.

5: Connect the WAN port of your router to the ONT.

6: Make sure that you have internet access via your router. (This might take 5-10
min.)

7: make sure you have internet via the verizon router's lan ports.

8: Log into your router and go to where you can see DHCP leases and note the IP of
the verizon router.

9: go to where you can forward ports from your router to the verizon router's IP
and enter the port forwards you noted earlier in step 3, but pointed to the verizon
router's ip that your router gave it. *10: In addition to the other port forwards
add a forward for port 63145 UDP to the verizon router ip. *11: your port forwards
should look something like this:

TCP: 35000 -> fios router wan ip TCP: 35001 -> fios router wan ip TCP: 35002 ->
fios router wan ip TCP: 63145 -> fios router wan ip UDP:4567 - > fios router wan ip

Everything should function as before. Let me know if I missed something or you have
issues.

For the record I am using a orange/black actiontec gigabit router for the setup
this was tested with.

====================================

This should block all incoming connections. Why is my PC's firewall log saying
there are lots of blocked connection with log entries such like IP 65.52.98.7
trying to connect to TCP port 58023 on the PC?

I have 2 PC, and they all have logs like this. The firewall program is McAfee Total
Protection.

There is no DMZ host enabled.

I didn't enable any port forwarding except for the 3 rules which comes with router
which seem to be for the FIOS TV:

Networked Computer / Device Applications & Ports Forwarded WAN Connection

Type Status Delete
localhost
127.0.0.1 Verizon FiOS Service
Tcp Any -> 4567 All Broadband Devices Active
192.168.1.100:8082 Application
TCP Any -> 35000 All Broadband Devices Active
192.168.1.100:63145 Application
UDP Any -> 63145 All Broadband Devices Active