Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




984 posts

Ultimate Geek


#271852 29-May-2020 10:53
Send private message quote this post

Is it possible to setup remote access (from WAN side) into the new Spark Smart Modems and lock it down to one IP? I've not got one to play with to see if it can be done. Thanks!


Create new topic


984 posts

Ultimate Geek


  #2496473 2-Jun-2020 09:45
Send private message quote this post

Bump sorry - anyone know?


552 posts

Ultimate Geek

Subscriber

  #2496475 2-Jun-2020 09:52
Send private message quote this post

remote management is not a standard feature of a consumer grade router


 
 
 
 


'That VDSL Cat'
12362 posts

Uber Geek

Trusted
Spark
Subscriber

  #2496479 2-Jun-2020 09:57
Send private message quote this post

I'd have to double check, pretty sure we disable turning this functionality off though (I'm not running the public version due to firmware testing)

 

 

 

Regardless, It's not really a great practice, I'd recommend having a VPN and connecting in that way.. 





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 


227 posts

Master Geek


  #2496483 2-Jun-2020 10:07
Send private message quote this post

wratterus:

 

Is it possible to setup remote access (from WAN side) into the new Spark Smart Modems and lock it down to one IP? I've not got one to play with to see if it can be done. Thanks!

 

 

Yes it is possible :)

 

Click to see full size


552 posts

Ultimate Geek

Subscriber

  #2496487 2-Jun-2020 10:12
Send private message quote this post

halper86:

 

Yes it is possible :)

 

Click to see full size

 

 

Make sure you untick "any ip address can remotely manage the smart modem" otherwise you have a death wish - is the external remote management https or http? I sure as hell hope its https

 

Personally, all our clients UTMs that we remote manage are via SSH only with private keys, non standard ports, and very limited IP addresses that are allowed


'That VDSL Cat'
12362 posts

Uber Geek

Trusted
Spark
Subscriber

  #2496495 2-Jun-2020 10:20
Send private message quote this post

nztim:

 

Personally, all our clients UTMs that we remote manage are via SSH only with private keys, non standard ports, and very limited IP addresses that are allowed

 

 

nonstandard ports always amuse me. 

 

Sure they stop a port knocker, but anyone looking for it will still find a SSH Daemon sitting on a nonstandard port.... 





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 


552 posts

Ultimate Geek

Subscriber

  #2496497 2-Jun-2020 10:22
Send private message quote this post

hio77:

 

nztim:

 

Personally, all our clients UTMs that we remote manage are via SSH only with private keys, non standard ports, and very limited IP addresses that are allowed

 

 

nonstandard ports always amuse me. 

 

Sure they stop a port knocker, but anyone looking for it will still find a SSH Daemon sitting on a nonstandard port.... 

 

 

you still need to be coming from an allowed source IP address - the key thing is the private key set for each of our admins


 
 
 
 




984 posts

Ultimate Geek


  #2496498 2-Jun-2020 10:23
Send private message quote this post

Thanks guys. Yes I know it's not best practice and maybe not normal for consumer grade routers, but a Netcomm NF18ACV for example allows this and it can be locked down to one IP, so it's not an awful option as a temporary stop gap measure. 

 

 

 

Thanks again.


Create new topic





Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Soul Machines joins forces with the World Health Organization
Posted 13-Jul-2020 18:00


Chorus completes the build and commissioning of two new core Ethernet switches
Posted 8-Jul-2020 09:48


National Institute for Health Innovation develops treatment app for gambling
Posted 6-Jul-2020 16:25


Nokia 2.3 to be available in New Zealand
Posted 6-Jul-2020 12:30


Menulog change colours as parent company merges with Dutch food delivery service
Posted 2-Jul-2020 07:53


Techweek2020 goes digital to make it easier for Kiwis to connect and learn
Posted 2-Jul-2020 07:48


Catalyst Cloud launches new Solutions Hub to support their kiwi Partners and Customers
Posted 2-Jul-2020 07:44


Microsoft to help New Zealand job seekers acquire new digital skills needed for the COVID-19 economy
Posted 2-Jul-2020 07:41


Hewlett Packard Enterprise introduces new HPE GreenLake cloud services
Posted 24-Jun-2020 08:07


New cloud data protection services from Hewlett Packard Enterprise
Posted 24-Jun-2020 07:58


Hewlett Packard Enterprise unveils HPE Ezmeral, new software portfolio and brand
Posted 24-Jun-2020 07:10


Apple reveals new developer technologies to foster the next generation of apps
Posted 23-Jun-2020 15:30


Poly introduces solutions for Microsoft Teams Rooms
Posted 23-Jun-2020 15:14


Lenovo launches new ThinkPad P Series mobile workstations
Posted 23-Jun-2020 09:17


Lenovo brings Linux certification to ThinkPad and ThinkStation Workstation portfolio
Posted 23-Jun-2020 08:56



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.