Firewall is blocking the receiver port 22809

Chris.G

Chris.G

Member
Joined
Apr 25, 2024
Messages
15
I have noticed that my Unifi firewall between the WiiM Pro (IoT-Vlan) and the WiiM App (LAN) is blocking the receiver port 22809. Does anyone have any idea what it is?
 
I don't run Unifi firewall but lots of their routers/switches/WAPs. Assuming that your IOT-VLAN has some ruleset applied, I'd have a close read of these Unifi pages to compare with your setup. You may be triggering some behaviour that is considered helpful, but isn't for your use case.
help.ui.com

UniFi Gateway - Advanced Firewall Rules

UniFi Gateways include a powerful Firewall engine to maximum security in your network architecture. For most users, we recommend creating Simple Rules. They provide an intuitive interface that stre...
help.ui.com help.ui.com
help.ui.com

How to Implement Network and Client Isolation

UniFi offers a range of features to achieve both network/VLAN and client device isolation. Understanding how these work and how to implement them can significantly enhance the effectiveness of your...
help.ui.com help.ui.com
 
hoohoohoo said:
I don't run Unifi firewall but lots of their routers/switches/WAPs. Assuming that your IOT-VLAN has some ruleset applied, I'd have a close read of these Unifi pages to compare with your setup. You may be triggering some behaviour that is considered helpful, but isn't for your use case.
help.ui.com

UniFi Gateway - Advanced Firewall Rules

UniFi Gateways include a powerful Firewall engine to maximum security in your network architecture. For most users, we recommend creating Simple Rules. They provide an intuitive interface that stre...
help.ui.com help.ui.com
help.ui.com

How to Implement Network and Client Isolation

UniFi offers a range of features to achieve both network/VLAN and client device isolation. Understanding how these work and how to implement them can significantly enhance the effectiveness of your...
help.ui.com help.ui.com
Click to expand...
That's not the problem, I just wanted to know what port 22809 is for. Because I couldn't find a hint anywhere.
 
Chris.G said:
That's not the problem, I just wanted to know what port 22809 is for. Because I couldn't find a hint anywhere.
Click to expand...
Ahh...no clue on this either.

Just nmap'ed my WiiM Amp:
Code: 
PORT      STATE SERVICE
443/tcp   open  https
7000/tcp  open  afs3-fileserver
8008/tcp  open  http
8009/tcp  open  ajp13
8443/tcp  open  https-alt
9000/tcp  open  cslistener
10001/tcp open  scp-config
49152/tcp open  unknown
 
High number ports are usually the the outgoing connection to something or other e.g. a device might open 22809 temporarily in order to receive something back from 443 (https).
 
d6jg said:
High number ports are usually the the outgoing connection to something or other e.g. a device might open 22809 temporarily in order to receive something back from 443 (https).
Click to expand...
Good thought. You're probably thinking of dynamic ports which are in the range 49152 to 65535.

22809 would still be a fixed port. So it would have a defined purpose.
 
hoohoohoo said:
Good thought. You're probably thinking of dynamic ports which are in the range 49152 to 65535.

22809 would still be a fixed port. So it would have a defined purpose.
Click to expand...
Possibly but I am not aware of 22809 having a known purpose and nor does Google who usually knows.
 
d6jg said:
Possibly but I am not aware of 22809 having a known purpose and nor does Google who usually knows.
Click to expand...
Right, but lots of consumer devices have static ports that are custom. It still has a defined purpose but not disclosed. It happens.
 
Did anyone ever figure out what this port is used for? I see that the WiiM devices (IoT network) try to connect to my iPhone (trusted network) on port 22809.

Seems to trigger whenever I link devices and when I play Spotify with the WiiM amp open. I'm sure it serves a useful purpose, just wish it was documented!
 
I think it could be related to either MFI-Config or LinkPlay (WiiM) through mDNS, but can't remember their respective ports. I have enabled mDNS Proxy since it became available in UniFi Network Application.
Have added some additional services in order to communicate/adjust settings on the WiiM (Pro Plus) in the WiiM Home app from another VLAN. WiiM is on a different VLAN, with the ability to only respond to specific requests from specific devices on main VLAN. mDNS Proxy was a great way to further reduce the number of things that needed to be possible to transverse through mDNS (though "pure" IoT devices have their own, isolated VLAN with no transversal between VLANS or between the devices themselves).

I've attached a screenshot of my current mDNS Proxy setup, with the manual ones added at the top right.

You could also check with the WiFiman utility, when signed in at the Ui account in the app, and enabled WiFiMan in Network Application. Then go to Discovery, and find the specific device and have a look under ports/services.
 

Attachments

  • mDNS Proxy settings UniFi.PNG
    mDNS Proxy settings UniFi.PNG
    234.9 KB · Views: 4
You must log in or register to reply here.

Similar threads

Maurizio
A very strange thing regarding the Ultra FW update
Replies
2
Views
538
Maurizio
Maurizio
Groove Catcher
YouTube Music Gapless playback support
Replies
6
Views
421
Groove Catcher
Groove Catcher
kupo
  • Locked
  • Question Question
Is there a visualizer option for iPad?
Replies
3
Views
228
QuarryHunslet
QuarryHunslet
J
  • Question Question
Wiim Ultra as a hub to a bathroom movie audio streaming device and lossless headphone station.
Replies
3
Views
473
jdjung
J
G
Is my Remote working?
Replies
7
Views
361
Doublej
D
Back
Top