NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

scottdrynan's avatar
scottdrynan
Tutor
Jan 25, 2021

Account Lockout after X Attempts - SRR60

I cannot find out how to set a login lockout after a certain number of attempts.  I have been viewing my log files and they are filled with people trying to log in 20 times at least.  Since this is a...
YeZ's avatar
YeZ
NETGEAR Expert
Jan 26, 2021

Sorry for the confusion. What I posted was towards Cloud-based Insight login, not the local login attempts on the router itself. 

We will look into this "Remote Login Failure" case in the local logs you posted. Thank you.

YeZ's avatar
YeZ
NETGEAR Expert
Jan 26, 2021

scottdrynan It seems like you have enabled "Remote Management" in the SRK60 local web GUI. In that page, you should be able to block IP by only allowing a specific computer or an IP range. 

  • schumaku's avatar
    schumaku
    Guru - Experienced User
    Jan 26, 2021
    YeZ wrote:

    scottdrynan It seems like you have enabled "Remote Management" in the SRK60 local web GUI. In that page, you should be able to block IP by only allowing a specific computer or an IP range. 

    Afraid to chime in again - that's an other unreal minimalistic consumer remote management restriction from 1995 (and and years before by the then young ZyXEL in the young Internet times, sorry saying. How many users have a fixed single IP (or a public subnet) from where they want to remote manage a device? How does this fit to the mobile admin who want to do remote management 24*365 from where ever he is, on different devices?

     

    Every average "pro" router for the better SOHO or smaller SMB device needs features like a fully configurable firewall in general, with rules for WAN->[V]LAN[1..4], WAN->Device, [V]LAN[1|2|3|4]<->[V]LAN[1|2|3|4]  ... and so on (not a crazy LAN->Internet service block - another 1995 consumer router feature). Decent firewalls allow country-, region-, continent- source based firewalls, especially for exposed services. 

     

    Needless to say, optional add-on security like an authentication certificate (by user account) - this requires installing it on the client devices for https or ssh access. But wait. before we need support for certificates on the https and ssh, means local generation of a CSR, the ability to import certificates, or user friendly automated certificates like Let's Encrypt, ....

     

    Welcome to the year 2021 my friend.

     

     

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More