Menu
What's new
By:
Filters Better Search

[Security] - reminder to stay secure

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

I am thinking that if you have RMerlin's firmware you could use IPTables to prevent such hacks by blocking on the input chain except for hosts that you need such as your DNS server or the router's VPN destinations. And also use VPN to access internal services.
 
A secure jump box is always a good approach - port forwards are always a risk, but a jump box can minimize things, and reduce the risk to the Gateway/Firewall...

Something like a Pi can be all that's needed...
 
swetoast said:
an idea might be to have smb shared dir and then openvpn into the network
Click to expand...

I have Samba enabled on the remote server. However, I cannot see the remote computer under "Network" from file explorer. I also tried //192.168.2.1/data but nothing returns.

If I do http://192.168.2.1, I can assess the admin page of the router.
 
System Error Message said:
I am thinking that if you have RMerlin's firmware you could use IPTables to prevent such hacks by blocking on the input chain except for hosts that you need such as your DNS server or the router's VPN destinations. And also use VPN to access internal services.
Click to expand...
The remote router is a NT-56U... There is no RMerlin firmware..
 
leon said:
I have Samba enabled on the remote server. However, I cannot see the remote computer under "Network" from file explorer. I also tried //192.168.2.1/data but nothing returns.
Click to expand...
The syntax is with back slashes, try: \\192.168.2.1\data
 
The reason why i suggested RMerlin's firmware was because of the inclusion of IPTables which lets you intentionally drop packets on the input chain which helps to secure your router.
 
System Error Message said:
The reason why i suggested RMerlin's firmware was because of the inclusion of IPTables which lets you intentionally drop packets on the input chain which helps to secure your router.
Click to expand...
I agree. I am using it for my home router. My next project is to dissect my home network to three segments; 1) full internet and local assess, 2) local assess only and 3) internet assess only. 1) is the default behavious. I can get 2) to work. I still need to figure how to setup 3). Any advice? Thanks in advance.
 
You must log in or register to reply here.

Similar threads

A
Enable Web Access from WAN can't stay enabled
Replies
2
Views
273
Alipasijaner
A
F
Flex qos without trend micro
Replies
9
Views
861
L&LD
L&LD
wahoowad
Security check advice for my RT-AC68U
Replies
18
Views
623
wahoowad
wahoowad
S
Cable replacement SFF8644 to SFF8088 for TL-D1600S
Replies
2
Views
194
Stierthuh69
S
sfx2000
CVE-2024-3094 - XZ Utils Backdoor - addtional info
Replies
12
Views
805
coxhaus
C
Similar threads
Thread starter Title Forum Replies Date
G Asus firmware IKEv2 VPN security issue ASUS Wireless 7
B Asus Router/Network Security Question... ASUS Wireless 5
GHog cannot save changes on AX-6000 wifi security changes when clicking apply. ASUS Wireless 4

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 791 (members: 34, guests: 757)
Top