Also would be a help if general common TCP ports were checked to see if default open or closed, preferably stealthed, so the user could at least close any TCP ports open found on their router(s).
This general TCP port scan does not seem to be included in normal HNS scans, seems missing this information that could be helpful in buttoning down/securing a consumer router.
For example, TCP port 4567 found open at GRC website on some Actiontec modem(s)/routers or some ZyXel routers have TCP port 443 found open.