Re: another lesson
Your phone is not a server. If you nmap it, it likely has zero ports open unless you turn on Wifi hotspot functionality.
Your Playstation is neither (though if it claims that peer-to-peer network requires a port forward because some games producers are cheap and won't run matchmaking servers).
Your DVR may well be. But only if it's not capable of talking out to a central server which acts a proxy like most DVRs do for their mobile apps. Hint: Have you seen the stories for the last 5 years about how insecure DVRs are, the article on BBC News yesterday about the guy who had a DVR open to the world and didn't know, etc.? There's a reason we don't let ordinary people run servers).
Your lightbulb - if you're stupid enough to have networked lightbulbs - I'd hope they only operate internally on your Wifi, but if not then see the DVR answer.
Sorry, but nothing you have REQUIRES a port-forward, unless you are providing an actual service. Running a web server. Running an email server. Running a games server (not just playing games online on other people's servers). All of which require more care about how you do so than the average person can ever give them, which is why we put people behind NAT on home routers.
And if you're doing those things, you want well-known port-number statically entered, the server running all day long, and for it to be advertised to the world. UPnP is not the answer.
I literally turn off UPnP on all devices. Not one person has ever complained, even the couple who brought their XBox 360 to my house and connected it to play multiplayer online. Everything that "needs" port-forwarding doesn't. Unless you are trying to run a server from your home connection and thereby exposing yourself to much worse than anything UPnP can do to you anyway.
Biting the hand that feeds IT
