NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
RBK40 black list external IPs
Hi All, I'm wondering is it possible to black list external IP addresses ? In my router logs i can see a lot of "failed login" attempts (in hundreds). I can stop the remote management funtion, but ...
Stimar wrote:I'm wondering is it possible to black list external IP addresses ?
In my router logs i can see a lot of "failed login" attempts (in hundreds). I can stop the remote management funtion, but it is good to have it working.
There are two alternative ways to manage an Orbi remotely, which will eliminate the "failed login" attempts:
- The Orbi "app" provides the typical "cloud" pathway where the Orbi opens a link to Netgear's cloud system and the app uses this link to reach the Orbi. This is what is used for the bulk of the Internet of Things (IoT). For me, although the "app" is shiny and modern, I find that most of what I want to do on the Orbi requires either web or telnet access.
- Set up VPN. Once a Dynamic DNS and VPN (they go together) are configured, it is possible to reach the Orbi from the internet through the VPN and access the web interface or telnet into the Orbi. This is not a trivial exercise
One of my "suggestions" to Netgear is to show what password was entered in the failed attempt so that the user can determine what sort of attack is being conducted. i.e. Is it a list of common passwords? Are they enumerating all possible passwords starting with "aaaaa"? In my case, my 25 character string of words, numbers, and punctuation is likely to withstand attack well into the next century.
Hi All
CrimpOnThanks for the suggestion that you made, about the strong password - this is correct but sometime attackers are exploiting vulnerabilities which are independent from the password it self. Most time problems come from within. IoT devices for example are more prone to attacks since they are not regularly updated or no updated at all which pose a risks.
The question would be - will NetGear add new feature - blacklist, which will be firewall improvement.
Stimar wrote:Hi All
CrimpOnThanks for the suggestion that you made, about the strong password - this is correct but sometime attackers are exploiting vulnerabilities which are independent from the password it self. Most time problems come from within. IoT devices for example are more prone to attacks since they are not regularly updated or no updated at all which pose a risks.
The question would be - will NetGear add new feature - blacklist, which will be firewall improvement.
Netgear has an "Idea Exchange" where customers propose features. https://community.netgear.com/t5/Idea-Exchange-For-Home/idb-p/idea-exchange-for-home
This is just an opinion, but my feeling is that Netgear may think that "Armor" is their solution to enhanced security. I, personally, have not activated Armor, and have not spent much time learning what it does.
- I don't know how many devices you have but if it's feasible, have you tried to login to the web interface....not the app...and turn on whitelist connections only? You simply whitelist all your normal devices' Mac ID and then by default everything else is blacklisted. Again, this is web login...i.e. http://192.168.1.1 . This works for me..