NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
LAN access from remote R7000
Can someone explain what is happening? I am using a Netgear router R7000 Nighthawk router: [LAN access from remote] from 52.197.117.189:59461 to IP for DLINK 2630, Saturday, Nov 19,2016 04:26:46...
Thanks to both of you. I disabled UpNP and the cams (DLINK) still work. However, it seems I don't get any 1 minute limit. The clock shows serveral minutes have passed now and I get no message it has stopped. There is no motion in the background but I dont think its an issue as the clock is still ticking....
Looks like by default this router enabled UpNP and DLINK's software set up each cam for the user without any warning of the implications.
BTW do you know why an Android device would show as an attempted outside connection? Is this due to an intruder just scanning for things?
Will check the logs later and report again to see if any outside connections.
Thats a good point. As you know the router is dual band. I have my devices on one band and mydlink app on a different band to to try to emulate remote access. I guess it doesnt matter. Will try this out soon from an oustide router and report back. I checked the log and have not seen any intrusions!! Very happy.
Both bands on a dual band router on bridged together and are part of the local network. Disconnect the device running the mydlink app from your Wi-Fi network and switch to the cellular data connection. That will put it outside your network.
This is one aspect where NetGear is sorely lacking imho.
previous threads, (Block-inbound-IP-address/m-p/1010272#M21664) posted as 'Solved' is not 'Solved'.
Every post such as this, the response is generally stated as; 'the router has a built in firewall that will take care of it' which is total BS.
ANYTIME someone has a specific IP and port to probe you with, it can be only a matter of time when they will hit up the unique format that will allow access.... PERIOD. For NetGear to rely solely on its internal Firewall is nonsense. (case in point below).
I chose this router after literally months of research, and this was a feature (or lack thereof) that almost caused me to go with another brand. I chose performance, a decision I am wondering about.
Especially since the 'internet of things' is becoming more and more an everyday, every home (I know not literally but still) occurrence, NetGear seriously needs to give some re-thought to add this feature "InBound IP Address Block" into the firmware... PERIOD.
While I do have some IP cameras, I do not access them from remote, (and that means nothing as others possibly _could_) however I do have a FTP server which I often use from remote.Somehow, someway, someone has determined this, and I routinely get probes of my IP address, specifically targeting the xx.xx.xx.50:52522 IP address this server is configured for, and probing one port call after another, some ports for which I must open for the server to work.
It's only a matter of time before they accidently find the port, and will get a login prompt. Provided that scenario occurs, NOTHING in the NetGear firewall is going to stop it as it will appear to be legit traffic. <<< ---- *** Note NetGear -- THIS IS WHY THIS IS NEEDED!!!One day, they are going to hit upon the correct, open port, and get a response of some type, and then I'm screwed... they'll hit me and hit hard... don't worry NetGear's firewall is on duty.... seriously?
Yes I could change the internal IP, then reconfig the server, then the Windows Firewall, and change the open ports in the router, and ... blah blah blah.
Would be much simpler to just be able to add, ban 185.156.*.* and DONE. I know no one in Amsterdam, or China, or Hong Kong. No one should be probing my IP.I shake my head sometimes at folks who are so fonvinced they are correct, and they just aren't.
This is the best performance router I've ever had. It's like having a Rolls Royce, but it doesn't come with a radio. It's just nonsense.