Forum Discussion

Tutor

Feb 15, 2020

Solved

Firmware Check Error

I am using the app, and unable to update my firmware. Bought the router new 6 mos ago, and haven't been able to run an update, so I'm still on 1.02.46. Any advice on how to get the update functioning...

GBallantyne
Oct 10, 2021
All fixed up. There were two issues, double NAT configuration and a public IP address on the Netgear router. Bridge mode now enabled on the Viasat router, and Netgear router given private IP address and address pool.

microchip8

Master

Sep 20, 2019

Here's what I'm getting on tests.

IPv6 test: https://owncloud.teambelgium.net/index.php/s/3qQ4cBf0jwDvbDV

.63 firmware option: https://owncloud.teambelgium.net/index.php/s/SZU8EXD4hHOqlfW

Here's a guide for Windows to allow ICMPv6 (scroll to the middle): https://www.howtogeek.com/howto/windows-vista/allow-pings-icmp-echo-request-through-your-windows-vista-firewall/

p0se1d0n

Guide

Sep 28, 2019

A Netgear engineer replied to my inquiry about this issue with the following:
————————————————
As per our router specification "An implementation MUST NOT send out the ICMPv6 echo reply on the router’s WAN interface if the “Respond to Ping on Internet Port” option is not enabled” for security reasons. So that means in order to allow this user must enable respond to ping on internet port. R7800 should have an option for IPv6 ping on the debug page. If you go to debug page you should see an option called “Allow external IPv6 hosts ping internal IPv6 hosts” and user need to enable this if he wants external IPv6 address to ping internal ones."

To access the debug page, just type this address on your browser 192.168.1.1/debug.htm or routerlogin.net/debug.htm and login using the router's credentials. Scroll down to the bottom and look for Allow external IPv6 hosts ping internal IPv6 hosts and enable it.
——————————————-
Should I try this or is this a security concern? Not sure what to make of this. Thanks

_Bender_
Tutor
Jan 31, 2020
Copy Link
Report
Sweet! Works as it should now :)
p0se1d0n
Guide
Jan 31, 2020
Copy Link
Report
What did u do to get it working and are you using the R7800 router?
_Bender_
Tutor
Jan 31, 2020
Copy Link
Report
I followed your instructions and enabled Allow external IPv6 hosts ping internal IPv6 hosts in the debug menu :)
p0se1d0n
Guide
Feb 01, 2020
Copy Link
Report
Those were the instructions from Netgear support. I just tried it and you’re right it does work.

But the question remains if it’s SECURITY RISK having that setting enabled.

Can someone more knowledgeable about this chime in please.
microchip8
Master
Feb 01, 2020
Copy Link
Report
it's not really a security issue as NG's firewall throttles ping replies after a certain amount. For IPv6, ICMPv6 is crucial for the correct working of IPv6. The following below must be passed

router-advertisement
router-solicitation
neighbour-advertisement
neighbour-solicitation
destination-unreachable
packet-too-big
time-exceeded
parameter-problem
unknown-header-type
p0se1d0n
Guide
Feb 01, 2020
Copy Link
Report
I did a reboot on the R7800 and I noticed the setting reverted back to default (unchecked). Is this normal behavior?

In the debug menu I didn’t notice a “save” button. Is it supposed to reset after a reboot though?
microchip8
Master
Feb 01, 2020
Copy Link
Report
After reboot, the settings are set to defaults in the debug page. This is normal and you have to enable them after each reboot