Network UDP advice

Hi 

Hope some one can help me... not tech savvy on this sort of thing.  I recently suspected that maybe someone was accessing my Laptop. I installed TCP view

to try and look at what is being connected to my laptop.

i can see established connections  TCP  most using port 443...

i am unsure of what Listening means or if they cause a problem  and what UDP connections are... some posts suggest I should block UDP in my firewall, to be honest not sure what i do ... best not to tinker till i know what is best

attached is my current UDP connections , do these look ok?

Edited by hamluis, 26 August 2023 - 05:22 AM.
Moved from Firewall to Networking - Hamluis.

Sorry seems was posted in the wrong forum, can anyone help me here?

kinda a newbie , so forgive me if i am asking the wrong people

I now read the forum rules

Edited by Sunnybolero143, 27 August 2023 - 12:06 AM.

I don't see anything that stands out. Anyone else? Dan, you know more about this sort of thing.

I really Now hope some can help me out here.

I noticed today that SSDPSrv had a coonection under UPD6v  Local address  144.173.22.110 for a University in England... This freaked me out See below.

I really do not understand what is UDP and what is UDP6v  , can someone explain what they are and what I should do.. I have real concern that someone as access to my laptop

..... I disabled service SSDPSrv  and also upnphost in service, although I am not sure what the impact will be

Edited by Sunnybolero143, 30 August 2023 - 05:42 AM.

Cryptodan

Thanks for this... really a newbie.... kinda freaked out because I could not understand why this ip address is appearing on my local address when all others are showing my laptop name. been using TCPview to check my connections and to be truthful really should go and find a good tutorial on how these connections work

and yes i intend to keep UPnP disabled 

Ian

https://www.bleepingcomputer.com/startups/5174/ssdpsrv.exe/

SSDP Service is a completely normal part of Windows operations.

A word of advice: When my classmates and I first started psychology in university  and we learned about different psychological disorders, we were often convinced we had each consecutive one. Same thing is common with medical school newbies. And the same thing is common for people new to networking...they look at a few screens and see connections they don't understand and go into panic mode.

Only after you do a little learning and gain some experience will you likely be able recognize what's a legitimate connection and what isn't. And unless your PC is showing unusual behaviour, it's almost always nothing to worry about.

This is somewhat tangential, but if you're serious about learning basic "firewall forensics", this article is quite well-written:

http://www.capnet.state.tx.us/firewall-seen.html

Edited by Shplad, 30 August 2023 - 12:39 PM.

UDP, and TCP for that matter, are both very common and essential networking protocols that have been in use for decades. Don't try to 'block it in your router', that will just intentionally create a big problem with your online access. Whomever suggested that to you was just trolling you with misinformation.

https://en.wikipedia.org/wiki/User_Datagram_Protocol#IPv4_pseudo_header