NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

ArtLee's avatar
ArtLee
Apprentice
Jun 21, 2017

Newbie questions

I'm three days into using my new Orbi RBK50. And, I have a couple of questions...   Should UPnP be set to on???  Shoud I have Implicit Beamforming turned on??? And, Enable MU-MIMO??? Do I need t...
Features
Installation
DukeSilver's avatar
DukeSilver
Star
Jun 21, 2017

Hi!  The answer to all three questions is an emphatic NO.

ArtLee's avatar
ArtLee
Apprentice
Jun 21, 2017

Thanks. I notice that UPnP is turned on... I'm wondering if there is a downside to turning it off...

  • DukeSilver's avatar
    DukeSilver
    Star
    Jun 21, 2017

    If you have connected devices that need to discover each other then UPnP may need to be enabled. It is likely you do not as this is actually a rarer case then it used to be.  If you do not need it then disable it as it is a potential security hole.   I had UPnP enabled on my R7000 and had frequent remote access intrusions.

     

    From

    http://www.makeuseof.com/tag/what-is-upnp-and-why-is-it-dangerous-makeuseof-explains/

     

    • Programming Errors – there are oversights in the actual code for UPnP implementations that can be exploited by malicious users, allowing them to execute harmful code through injection.
    • Unintended Exposure – the purpose of UPnP is to make devices on a network easily discoverable by other devices on that network. Unfortunately some UPnP control interfaces can be (and routinely are) exposed to the public Internet, allowing malicious users to find and gain access to your private devices
    • ArtLee's avatar
      ArtLee
      Apprentice
      Jun 21, 2017

      Well, I don't know if I have devices that need to discover each other or not. 

    • peteytesting's avatar
      peteytesting
      Hero
      Jun 21, 2017

      DukeSilver

       

      UPnP is needed for all sorts of things and our devices use it daily and you will have issues with 2 way communications if its of eg torrents wont work well , windows messenger and facebook messenger wont work plus many more things

       

      UPnP is there for far more things that just connecting between machines , turning it of is a paranoid security measure at best and overkill for the average home router

       

      pete

      • DukeSilver's avatar
        DukeSilver
        Star
        Jun 21, 2017

        Thanks for the advice.  It is simple to turn it off and see if you really need it.  I have it off and have no issues with any services\devices on my network.  

         

        I read "paranoid" to be smart and safe.  Don't open ports\enable services you do not need.    If I have UPnP enabled I see frequent remote access login attempts.  

         

        As with all advice - do your homework, make your own decisions, live with the consequences.

         

        Per Ars Technica article:

         

        They identified 81 million unique addresses that responded to standard UPnP discovery requests, even though the standard isn't supposed to communicate with devices that are outside a local network. Further scans revealed 17 million addresses exposed UPnP services built on the open standard known as SOAP, short for simple object access protocol. By broadcasting the service to the Internet at large, the devices can make it possible for attackers to bypass firewall protections.