NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
perseid
Nov 30, 2019Aspirant
R7800 ShieldsUP fails Stealth mode/Replies Ping
Hi all, I performed the ShieldsUP! test on all ports and all ports come green (Stealth), however it fails the test because of the following: "Ping Reply: RECEIVED (FAILED) — Your system REPLIED ...
- Dec 04, 2019
> [...] the ISP has placed another router between mine and the internet.
> [...]_Someone_ has. It could be your ISP; it could be your building
management. I would expect an address like "192.168.0.x" to come from
some (small-scale) local router, not from an ISP.> [...] First time I see this.
It may not be the last. Especially if you don't deal directly with
an ISP. (Or if your ISP uses CGN.)
> [...] my Nighthawk was set in AP Mode. [...]You could go back to that kid of arrangement, but there are
disadvantages that way, too. For example, your devices would then be on
the same LAN subnet as those of any other user who also uses that same
invisible router which is somewhere beyond your wall, Potentially,
everyone in the building.
perseid
Nov 30, 2019Aspirant
Thanks for your reply. I had that option greyed out since my Nighthawk was set in AP Mode. So I factory reset the router, set it in Router Mode, and the option you mentioned was made available. As you can see from screenshot the "Respond to Ping on Internet Port" is disabled, but the ShieldsUP! test still gives the same results, namely:
"Ping Reply: RECEIVED (FAILED) — Your system REPLIED to our Ping (ICMP Echo) requests, making it visible on the Internet. Most personal firewalls can be configured to block, drop, and ignore such ping requests in order to better hide systems from hackers. This is highly recommended since "Ping" is among the oldest and most common methods used to locate systems prior to further exploitation."
Any other setting that might be affecting this? Thanks
shadowsports
Nov 30, 2019Hero
- perseidNov 30, 2019Aspirant
What do you mean by "in front of my router"? My router is connected directly to the internet (wired) and my PC is connected to the router wired too (I don't use wireless).
- antinodeNov 30, 2019Guru
> What do you mean by "in front of my router"? [...]
Probably: Between your router and your (unspecified) ISP.
To what, exactly, is the WAN/Internet port of your router connected?
(Hint: "The wall" is not a very informative answer.)> [...] My router is connected directly to the internet (wired) [...]
"The Internet" is more complicated than you realize. Likelier than
not, you're connecting your R7800 to some other router, and _that_
router responds to Ping (ICMP Echo) requests.
What is/are the IP address(es) of the R7800?> [...] This is highly recommended since "Ping" is among the oldest and
> most common methods used to locate systems prior to further
> exploitation."
Rather dubious advice, I'd say. I doubt that disabling the "ping"
response from the (invisible) router in your environment (of which
you're unaware) would have much of an effect on your exposure to
malefactors on the (actual) Internet. Relax.- perseidNov 30, 2019Aspirant
There is a network cable from the ISP coming out of the wall which is directly connected to my Nighthawk, so in my apartment there is no other router other than mine. There could be a router in the building from which all apartments are fed, I have no idea about that, but will find out. When posting this issue I assumed that the ISP cable connected to my router is a peer to peer connection to my ISP with no router in between.