NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

CrimpOn's avatar
CrimpOn
Guru - Experienced User
Aug 17, 2019

Hacking Remote Administration

I left Remote Administration turned on for a while and was surprised to find my Orbi log now includes two separate groups of "remote login failure".  One was 40 attempts. The other 100 attempts.  Nei...
ekhalil's avatar
ekhalil
Master
Aug 18, 2019
CrimpOn wrote:

.......

My assumption was that in order to attempt a remote login someone would have to learn the precise name of my entry in "mynetgear.com" .........

I think hackers try massive pings to find out that you have a Netgear router and then try to exploit known security vulnerabilities to get access.

  1. Disabling “respond to ping on internet port” in the WAN settings should help hide your router.
  2. Having a strong password is good enough to stop hackers from accessing Orbi. 
  3. Disabling Remote Management in the web GUI is another level of security. You will still have the possibility to remotely manage your Orbi in the Orbi app as this has nothing to do with the web GUI’s remote management. 

 

 

 

  • CrimpOn's avatar
    CrimpOn
    Guru - Experienced User
    Aug 18, 2019

    Oh, fudge.  You are SO RIGHT.  When Remote Admin is enabled, my Orbi:

    1. Responds to external ping, and
    2. Responds to https: on port 8443.  My guess is that it would do no good to change the port number?

    After disabling Remote Admin, my "respond to ping on Internet port" is checked, but is grayed out.  I cannot "uncheck" it.  WTF???

     

    So, the Remote Administration URL that Orbi provides is how Netgear handles changes in Orbi IP's?  (i.e. "https://myorbi.mynetgear.com:8443")

     

    I had so hoped to avoid relying on the godforsaken "app" to do Remote Admin.

     

    So, if the app works even when Remote Admin is not enabled, maybe I can use the app to reach my Orbi and turn on Remote Admin.  Do my work, and then turn it back off?

    • ekhalil's avatar
      ekhalil
      Master
      Aug 18, 2019
      CrimpOn wrote:

      ........

      After disabling Remote Admin, my "respond to ping on Internet port" is checked, but is grayed out.  I cannot "uncheck" it.  WTF???

      .......

      I overcame this limitation using telnet as follows: :)

      root@RBR50:/# config set wan_endis_rspToPing=0

       

      CrimpOn wrote:

      .........

      So, if the app works even when Remote Admin is not enabled, maybe I can use the app to reach my Orbi and turn on Remote Admin.  Do my work, and then turn it back off?

      Unfortunately, you can't enable and disable the web GUI remote management from the app. The remote management setup in the Orbi app is only for the app's remote management (through your netgear cloud account).