Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)Fritz!Box security warning
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
Tinkerisk
4800 posts

Uber Geek
+1 received by user: 3660


  #3221805 23-Apr-2024 13:05
Send private message

timmmay:

 

RFC9375 says to use home.arpa. I switched to that when I moved pihole to docker.

 

 

This would then be the safest method for small business and home networks that are not being expanded.

 

 




     

  • Qui nihil scit, omnia credere debet.
  • Firewalls do NOT stop dragons.
  • In effect we have everything to hide from someone, and no idea who someone is.



st3v3th3p1r4t3
8 posts

Wannabe Geek


  #3221811 23-Apr-2024 13:43
Send private message

reven:


I believe this fixes it if using pihole, under "Domains" adding a regex blacklist.

nslookup returns 0.0.0.0 now for me, vs before it would return the "2001:19f0:6c00:1b0e:5400:4ff:fecd:7828 / 45.76.93.104".   



Would adding a local DNS record here also be a valid fix?



nztim
4013 posts

Uber Geek
+1 received by user: 2711

ID Verified
Trusted
TEAMnetwork
Subscriber

  #3221816 23-Apr-2024 13:58
Send private message

looks like action has been taken

 




Any views expressed on these forums are my own and don't necessarily reflect those of my employer. 



Tinkerisk
4800 posts

Uber Geek
+1 received by user: 3660


  #3221822 23-Apr-2024 14:19
Send private message

nztim:

 

looks like action has been taken

 

 

 

This is temporary. AVM has had the domain name blocked and still has to go through ICANN's URS process.

 

 




     

  • Qui nihil scit, omnia credere debet.
  • Firewalls do NOT stop dragons.
  • In effect we have everything to hide from someone, and no idea who someone is.

freitasm

BDFL - Memuneh
80657 posts

Uber Geek
+1 received by user: 41065

Administrator
ID Verified
Trusted
Geekzone
Lifetime subscriber

  #3224750 30-Apr-2024 19:03
Send private message

I've noticed my Synology NAS was still trying to reach multiple domains with the fritz.box domain attached. These lookups were all blocked with Cloudflare Zero Trust Gateway but... Because these lookups were returning NXDOMAIN (0.0.0.0) the NAS was getting errors when checking for updates or trying to backup the configuration.

 

This was a serious risk, as anyone controlling any of these fritz.box subdomains could easily setup a honeypot for Synology NAS users:

 

 

In the end I figured that a DNS option have to be changed to stop these. In the network tab of the NAS configuration there's an Advanced DNS option and this needs to be unchecked: 

 




Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies 

 

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

 

1 | 2 
Filter this topic showing only the reply marked as answer View this topic in a long page with up to 500 replies per page Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright