NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

protect WAN

1 Topic

Hot to Determine if Unauthorized Remote Access Succeeded
I review my router's log regularly and aside from the occasional DOS and FIN ”attacks" I can usually account for the IP addresses listed. There are, however, these entries for remote access to my LAN that I am at a loss to explain. All the more worrisome is the idea that my network is not secure, which serves to increase my paranoia to a level that is no way enjoyable. [My router's settings are secure as possible, e.g. remote management is disabled, and Access Control is enabled etc.] I need to understand why the log captured the following attempts to access my network. I included just a few of the entries on this week's log as an example, listing the more exotic IP address from countries known to harbor malicious hackers out to steal something of value. I listed three examples below: [LAN access from remote] from 122.114.252.227:43350 to 192.168.1.199:80, Saturday, Mar 25,2017 13:40:16 Location: Zhengzhou, China [LAN access from remote] from 81.218.166.54:55158 to 192.168.1.199:80, Saturday, Mar 25,2017 13:16:36 Location: Israel [LAN access from remote] from 139.162.111.147:50684 to 192.168.1.199:80, Friday, Mar 24,2017 22:14:39 Location: Rotterdam, Netherlands If you are able to shed some light on this, I would be greatly appreciative, and I am sure others with similar findings would also appreciate the education. Thank you in advance, Umrk
Solved
Umrk
Apr 02, 2017 Place Nighthawk Wi-Fi 5 (AC) Routers
5.1KViews
0likes
5Comments