DS Forums

 
 

Is DMZ still safe?


Reply
Thread Tools Search this Thread
Old 24-11-2016, 21:08
TheVoid
Forum Member
 
Join Date: Apr 2012
Posts: 2,642

Thinking of putting my PS4 in DMZ settings like I had my PS3. Mainly because of genres being on a moderate NAT type state. Is this still safe to do?
TheVoid is offline   Reply With Quote
Please sign in or register to remove this advertisement.
Old 28-11-2016, 14:00
red_g00ner
Forum Member
 
Join Date: Apr 2003
Location: UK
Posts: 790
So putting the PS4 in a DMZ will, on most routers, mean that any external traffic would be re-directed to your PS4.

This would mean that your PS4 is more vulnerable to an external attack.

Is there a particular reason you want to do this as l didnt quite understand your original post?
red_g00ner is offline   Reply With Quote
Old 28-11-2016, 18:53
s2k
Forum Member
 
Join Date: Apr 2006
Posts: 5,741
DMZ should be avoided for all but testing purposes. The correct procedure is to assign the PS3/4 a static IP and forward the ports needed for PSN and the games you intend to play.

TCP: 80*, 443*, 1935, 3478-3480.
UDP: 3478-3479.

*Almost certainly not needed and may well be being blocked by your ISP anyway but included it since it was on the list.

Bear in mind that if you are using a router you will never get Type 1 status as this can only be achieved by directly connecting your PS3 to a modem (not a router).
s2k is offline   Reply With Quote
Old 29-11-2016, 22:30
TheVoid
Forum Member
 
Join Date: Apr 2012
Posts: 2,642
Basically, CoD games are always showing as a 'moderate' connection. This is apparently not great.
TheVoid is offline   Reply With Quote
Old 01-12-2016, 20:24
s2k
Forum Member
 
Join Date: Apr 2006
Posts: 5,741
Basically, CoD games are always showing as a 'moderate' connection. This is apparently not great.
You will always get some degree of NAT limitation whilst behind a router. Forwarding the right ports should do the job for the most part though the XMB will always report type 2 (type 3/strict is when you have a problem). In addition to the entries in the previous post there will be a couple more specifically for CoD.

Using DMZ is dangerous as anyone who doesn't know what their doing could easily end up exposing their computer to the world if they muck up the internal addressing. I don't know the current situation with the PS4's security but having all ports visible and open for access could lead to problems.
s2k is offline   Reply With Quote
Old 08-12-2016, 10:44
The Sack
Forum Member
 
Join Date: Jan 2003
Location: S6 1SW WTID UTO FTB
Posts: 6,326
How are you going to expose your computer by putting a console in to a DMZ? You have absolutely no reason to touch anything on the computer or any other device on your network for that matter.

OP use a DMZ if that is what you want to do and don't listen to the FUD you're being fed on here, yes you are placing your console out in the open but you are exposing the console and that is it.

Think back over the last 10 years of online console gaming and have you ever heard any media fuss about peoples consoles being DMZed to death?
The Sack is offline   Reply With Quote
Old 08-12-2016, 11:38
red_g00ner
Forum Member
 
Join Date: Apr 2003
Location: UK
Posts: 790
How are you going to expose your computer by putting a console in to a DMZ? You have absolutely no reason to touch anything on the computer or any other device on your network for that matter.

OP use a DMZ if that is what you want to do and don't listen to the FUD you're being fed on here, yes you are placing your console out in the open but you are exposing the console and that is it.

Think back over the last 10 years of online console gaming and have you ever heard any media fuss about peoples consoles being DMZed to death?

Putting your PS4 in the DMZ will expose it more to attack. Having worked in IT for the last 22 years and being security focused for the last 10, maybe l am little bit more risk adverse than most users.

I would not put anything in the DMZ, always use Port Forwarding to achieve what you need to do.

I don't know what, if any, vulnerabilities exist on the PS4, but Sony have not had a good track record at securing their own systems and have been hacked several times.

If an attacker can exploit a vulnerability on your PS4, then they could potentially use that to attack other assets in your network.

I know what l am saying is mostly if and buts, but if there is a potential risk you shouldn't do it.
red_g00ner is offline   Reply With Quote
Old 08-12-2016, 18:53
s2k
Forum Member
 
Join Date: Apr 2006
Posts: 5,741
How are you going to expose your computer by putting a console in to a DMZ? You have absolutely no reason to touch anything on the computer or any other device on your network for that matter.

OP use a DMZ if that is what you want to do and don't listen to the FUD you're being fed on here, yes you are placing your console out in the open but you are exposing the console and that is it.

Think back over the last 10 years of online console gaming and have you ever heard any media fuss about peoples consoles being DMZed to death?
If you actually read what I said you might not have asked this question.

By creating a DMZ you are opening up all unsolicited internet traffic and forwarding it at an internal IP on your LAN. If someone balls this up by not creating a reservation or incorrectly assigns the same IP to another device that computer would be completely exposed.

To add to your 2nd point, the recent Mirai attacks have demonstrated that devices other than computers can easily become infected with malware and/or be compromised by security problems (which Sony do not have a great track record on).
s2k is offline   Reply With Quote
Old 26-12-2016, 11:44
The Sack
Forum Member
 
Join Date: Jan 2003
Location: S6 1SW WTID UTO FTB
Posts: 6,326
Well you can wrap up safe in the knowledge you are safe, I'll continue to have my consoles hanging out in a DMZ with all the bad misters just waiting to get me.

When you have a body of evidence that having a console in a DMZ is an actual and repeatable security risk to my entire network and that it has actually effected a substantial percentage of the console community then myself and millions of others will take note i suspect.
The Sack is offline   Reply With Quote
 
Reply



Thread Tools Search this Thread
Search this Thread:

Advanced Search

 
Forum Jump


All times are GMT. The time now is 06:21.