NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
EX2700 Security issue
I saw a post on here where someone has the same problem. Avast wifi checker comes up with a message when scanning the security of my network saying that it is vulnerable (on both extenders I use) to attacks from within my network. It says that UPNP is the problem and needs to be disabled, but there is nithing I can find that would disable UPNP. It also suggests updating the firmware. I am on v 1.0.1.48 which, from what I can see, is the latest firmware. Does anyone have any suggestions that may help. Happy to post some screenshots if someone can tell me how to do that :)
Many thanks in advance for any help or suggestions
uPNP isn't part of DNSMASQ ( https://en.wikipedia.org/wiki/Dnsmasq )
uPNP is described here: https://en.wikipedia.org/wiki/Universal_Plug_and_Play It includes a way for a program to tell your router to open a port in the firewall. That can simplify your router setup, but malware can use it to expose your home network as part of its attack.
Look in your BT router configuration - most routers have a way to disable uPNP. That only disables the ability for a program to open a firewall port - you can still run uPNP software (for instance DLNA media servers and players) on your home network. Though there are some programs that rely on the firewall management feature - so keep an eye out for misbehaving software if you do disable it.
.JPG){kind=link}
4 Replies
uPNP would only be a potential security threat if it were enabled on the router. The extender can't open up ports in the router firewall.
Thanks for that StephenB - very helpful. I think that the problem must lie with the BT router then. The Avast security check also shows that as being vulnerable. BT say that this vulenerabilty has been patched "The most recet firmware that was released by BT (SG4B1000B540) has not updated the DNSMASQ version number, however a patch was included which counteracts the vulnerability. Terefore any customer on the new firmware is protected but Avast will still throw up a warning message...."
They say they will fix this but have not done so yet.
I've no idea what a DNSMASQ is, but does that sound like it might explain it all ? Thanks again for your help. Much appreciated !
uPNP isn't part of DNSMASQ ( https://en.wikipedia.org/wiki/Dnsmasq )
uPNP is described here: https://en.wikipedia.org/wiki/Universal_Plug_and_Play It includes a way for a program to tell your router to open a port in the firewall. That can simplify your router setup, but malware can use it to expose your home network as part of its attack.
Look in your BT router configuration - most routers have a way to disable uPNP. That only disables the ability for a program to open a firewall port - you can still run uPNP software (for instance DLNA media servers and players) on your home network. Though there are some programs that rely on the firewall management feature - so keep an eye out for misbehaving software if you do disable it.