Re: great article on NAT router security
From: Kleeb (Kleeb_at_localhost.localdomain)
Date: 06/19/04
- Previous message: Kleeb: "Re: router"
- In reply to: steve h.: "great article on NAT router security"
- Next in thread: Leythos: "Re: great article on NAT router security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 19 Jun 2004 15:04:53 GMT
Good post.
Regarding the remote login service of many NAT routers, I have set my port 80
(HTTP) to a non-existent address on my (minature) network. Is this necessary ?
I own a Linksys BEFSR41 router, and find that if I type in my WAN (Internet) IP
address, I get the login prompt for my router. I'm assuming others would get
the same.
To counter this, I've set port-forwarding for port 80 to an invalid
address, such as 192.168.1.130. This seems to just hang any requests to port 80
on my Internet IP address. I can still login to my router of course, so long as
I do it from an internal address.
Maybe this is all unnecessary as even if I type my WAN (Internet) address into
a web browser, and get the login prompt, the router still 'knows' it's a
request from an internal address, and so allows it ?
I do have remote management disabled.
Regards,
Kleeb.
- Previous message: Kleeb: "Re: router"
- In reply to: steve h.: "great article on NAT router security"
- Next in thread: Leythos: "Re: great article on NAT router security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
