Network connectivity

dipstickone1 · March 20, 2022, 11:04am

Hi
Just got a muso2.
I run it behind a firewall.
Is there a list anywhere of the ports that need to be open and where the muso connects to?
As an example I found that port 8360 outgoing needs to be allowed for radio to work.
It would make life easier if I knew all the ports that were needed to make the allowances rather than watch and wait.

By the way why on earth does the box need to connect to connectivitycheck.gstatic.com every minute even if not using any network services?

D

robert_h · March 20, 2022, 1:09pm

Probably one for @Stevesky
Do you have to run it behind your firewall?

garyi · March 20, 2022, 5:56pm

Surely most any house with a router is behind a firewall?

robert_h · March 20, 2022, 6:06pm

Not (in my experience) one that blocks internet radio from working unless you deliberately open a port.

anon4489532 · March 20, 2022, 6:37pm

I’ve certainly never had to open ports or had things doing connectivity checks. It’s just a case of plugging in, connecting to the network and off it goes. It must be something more complicated than a standard router, for what reason we know not of course.

GadgetMan · March 20, 2022, 9:01pm

It may be that he works in IT and has setup his own private network of systems in a DMZ to help it partition away from the internet

Darkebear · March 20, 2022, 9:17pm

Firewall on the house Router usually allows for outbound connections from your equipment but not inbound from the network, so you should not need to open any port especially to allow an inbound connection from outside.
Outbound connections are considered relatively safe as they are instigated by a friendly box to a known friendly address - unless your box has been hacked prior to that and then it is not good, but the Muso should be fine.

DB.

dipstickone1 · March 21, 2022, 9:59am

You are correct GadgetMan IT security.
I control what communicates out from my network as well as in.
I make exceptions and exclusions where needed. I’m happy to monitor the connections and make the allowances as I see things come up but its generally much easier if i can review and build in the rules from the outset.
It is true that most provider supplied routers with builtin firewalls block incoming traffic where the request did not originate from inside and allow all traffic out by default- but I do not.

Naim must have a list and in my view this should be in the user guide/manual in this day and age.

GadgetMan · March 21, 2022, 11:20am

Yes that info must be available to the public. If Microsoft are happy to publish their ports, then you would think Naim would

Worst case scenario may be that you run Wireshark and sniff the network

Stevesky · March 21, 2022, 2:47pm

Hi all,

Blocking outgoing ports is a near mission impossible. Primarily:

for internet radio each station stream as the broadcaster defines the port(s) used. We have zero control over this.
you will be constantly fighting getting the connect services to work (spotify, tidal etc). Again we have no control over the ports they decide to use on outgoing and even if you briefly work out a set, it will likely break as they update their solutions.
Chromecast uses a very wide range of ports and again stream ports can vary based on service being cast.

So the answer is:

inbound - no ports needed.
outbound - ensure left open on non reserved ports.
Aka - that is the default config of any home network.

Regarding the ping check to google, that is Chromecast. If blocked then it will stop it from working and generally break functionality.

With regards

Steve Harris
Software Director
Naim Audio Ltd.

garyi · March 21, 2022, 7:03pm

I dont understand why the OP is trying to do it this way, logic dictates to put any devices you dont trust on a separate vlan with no access to the other network then even if something goes on, its only got itself to play with. Trying to understand every port that everything uses would at the very least be a task.

Well I have 60 devices on my network right now, so would be a task for me at least!

GadgetMan · March 21, 2022, 9:40pm

@dipstickone1 if you do still go down this route, then you could look at the code written by Kurt in the thread below, as I suspect it contains a lot of the radio stations addresses

dipstickone1 · March 21, 2022, 11:38pm

I have little experience of streaming radio hence asking about the ports. I did not realise that internet radio stations all use different ports. A similar situation exists with playstation and nintendo and to that end they sit on a “guest” wifi network where they have free outbound access. I have a nas holding music hence the requirement to have the muso on the main network.
Looks like I have a decision to make.

GadgetMan · March 22, 2022, 12:14am

You may not be interested in all stations, so you could just pick the ones you want
If you look at the config.txt file at the link below, you will see that they use all sorts of ports. e.g.

station = magic_radio, Magic-Radio, http://flac.magic-radio.net/flac, wav, 1
station = 95bFM, 95bFM, http://streams.95bfm.com/stream112, wav, 1
station = hi_on_line_radio, Hi On Line Radio, http://mscp2.live-streams.nl:8100/flac.flac, wav, 1
station = intense_radio, Intense Radio, http://secure.live-streams.nl/flac.flac, wav, 2
station = sector80s, Sector 80s, http://89.223.45.5:8000/geny-flac, wav, 1
station = sector90s, Sector 90s, http://89.223.45.5:8000/next-flac, wav, 1
station = chill_out_zone, Chill Out Zone Plus, http://chillout.zone/chillout_plus, wav, 1
station = 440hz_radio, 440Hz-Radio, http://stream.440hz-radio.de:8080/440hz.flac.ogg, wav, 1
station = radio_bluesflac, Radio Bluesflac, http://streams.radiomast.io/radioblues-flac, wav, 1
#station = mother_earth_radio, Mother Earth Radio, http://server9.streamserver24.com:18800/m

system · May 21, 2022, 12:14am

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.