NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Any need to beef up my security for this?
Hi all, I noticed in my router log this week for the first time, "Remote login failure". I only had about 5 of them for the week. Here is a sample, the IP addresses are all different countries - Mace...
Ok Thanks.
I have one piece of security advice. DO NOT allow router admin page access from the WAN side. In other words, only allow logins from a device that is already associated with your LAN. If you allow outside access, the router is going to get hammered 24/7/365. If you are seeing login failures that you can't explain from within your network, it's already too late 🙂
That example IP you pasted has been very very busy, port scans, all sorts of random connection attempts going back months.
Thanks F_V for the tip. Question for you though, how do I prevent router admin page access from the WAN side? Since the router admin page has an internal IP address, don't I have to explicitly map that thorough? Or does this mean turn off Anywhere Access in the Orbi app?
Thanks!
FYI, NG removed WAN side support for access to the RBRs web page about two years ago.
Eep! So maybe you're running VERY old firmware that still allows WAN side access? What Orbi Model and firmware version are you running? If Netgear disabled WAN side access, not sure how would someone get a "remote" login failure to the Orbi admin pages from a public IP.
I tend to get a lot of DDoS Inquiries and other nefarious listings in the logs. AND since my Hopper3s are contacting Russia, Belarus and other Soviet Block countries. So extraneous access for me is not a priority.
Can you check and see if your 8 series sees same thing too?
FarmerBob1 wrote:
I tend to get a lot of DDoS Inquiries and other nefarious listings in the logs. AND since my Hopper3s are contacting Russia, Belarus and other Soviet Block countries. So extraneous access for me is not a priority.
