So, don't have time at the moment for a long answer, I'll return to this later today. Don't know if it might drop for Boxing Day sales: Thats the lowest price that I've seen for this router. I mention this as Bestbuy has this router on sale at the moment for $199.99. That also requires a USB3 flash drive to hold the add-on files. ![]() I run an Asus RT-AC86U with Merlins Asuswrt loaded, which can then be used to load add-ons developed specifically for the purpose of Adblocking, IP Filtering and others. Those systems will have blocking capability built in, its just a matter of loading the right blocking lists. Beyond those choices, you're looking at something like PfSense, OpnSense, Sophos and others which are basically a pc with one of those operating systems loaded to run firewall, router, and other capabilities. be able to give you a quick answer on that one. I'm not familiar with Openwrt so I'd have to have a look at it. Small Net Builder forum for Merlins Asuswrt: That includes Merlins-Asuswrt for Asus routers and (Openwrt & dd-wrt) for a mixture of routers. That's a discussion in answer is some router that you can load third party firmware which can give you IP filtering capability. In terms of protecting yourself from external hackers, you would need to use a router that provides the ability to block external IP addresses, either by country or by blacklist, and there are several blacklists around that can be used for Firewall purposes. Run a scan for all service ports to see what turns up as been unprotected. If and when you have time, run a port scan using GRC's ShieldsUp scanner, located here: Its a little perplexing that a hacker is able to reach the pc thru the firewall. And, you can multiply that by a multitude of hackers around the world. So, despite swapping the modem, you might only see temporary relief assuming that the hacker is sweeping through the ASN ranges on a regular basis. ![]() So, for example here is Hurricane Electric's search page for Rogers Communications:Ī hacker would simply take those ASN ranges and sweep through those, looking for any unprotected ports. The problem here is that external hackers will probably sweep through a range of addresses and ports, probing for any port that can be used for items such as logging into modems, routers and anything connected to the internet. That will result in a different MAC address for the newly obtained modem, which results in a different WAN IP address. What you can do, which would have some minimal effect is to swap the modem at the nearest Rogers store. The Windows Remote Access setting should also be set to disabled. On the VPN Pass-through tab, unless you're running a VPN of some type, all of the pass-through settings should be set to Disabled. On that tab, the Ping from WAN setting should be set to Deny. ![]() The question is, does those settings impede your access to the internet to the point where it becomes a pain? Each level higher, has a greater effect on what is blocked. FIREWALL tab, consider changing the Firewall Level to Typical or Maximum to see what effect that has on your internet access. If neither one is true, I'd disable both. That is, unless you're a gamer and want to use UPNP instead of setting port forwarding rules manually, or if you happen to have a VOIP phone and need the SIP ALG setting enabled. If you change the IP Address to what you're seeing, check it to see if its been noted as an address that is seen to conduct that type of attack.įwiw, for your settings that you posted, I would disable the USB, UPNP, and SIP ALG, settings. That address is for one of the Blizzard servers. There isn't any capability to block external probing beyond the firewall setting.įwiw, use this address and change the IP address to the address that you've seen in the external probes:
0 Comments
Leave a Reply. |