NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

perseid's avatar
perseid
Aspirant
Nov 30, 2019
Solved

R7800 ShieldsUP fails Stealth mode/Replies Ping

Hi all, I performed the ShieldsUP! test on all ports

and all ports come green (Stealth), however it fails the test because of the following:

 

"Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation."

 

Is there any way to fix this so to make the router completely stealth? Thanks

  • antinode's avatar
    antinode
    Dec 04, 2019

    > [...] the ISP has placed another router between mine and the internet.
    > [...]

     

       _Someone_ has.  It could be your ISP; it could be your building
    management. I would expect an address like "192.168.0.x" to come from
    some (small-scale) local router, not from an ISP.

     

    > [...] First time I see this.

     

       It may not be the last.  Especially if you don't deal directly with
    an ISP.  (Or if your ISP uses CGN.)

     


    > [...] my Nighthawk was set in AP Mode. [...]

     

       You could go back to that kid of arrangement, but there are
    disadvantages that way, too.  For example, your devices would then be on
    the same LAN subnet as those of any other user who also uses that same
    invisible router which is somewhere beyond your wall,  Potentially,
    everyone in the building.

24 Replies

  • microchip8's avatar
    microchip8
    Master
    Nov 30, 2019

    Go to Advanced -> Setup -> WAN Setup and disable "respond to ping on internet port"

    • perseid's avatar
      perseid
      Aspirant
      Nov 30, 2019

      Thanks for your reply. I had that option greyed out since my Nighthawk was set in AP Mode. So I factory reset the router, set it in Router Mode, and the option you mentioned was made available. As you can see from screenshot the "Respond to Ping on Internet Port" is disabled, but the ShieldsUP! test still gives the same results, namely:

       

      "Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation."

       

      Any other setting that might be affecting this? Thanks