Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)Ubiquiti & ShieldsUp

IcI



444 posts

Ultimate Geek
+1 received by user: 95

Trusted

Topic # 214603 20-May-2017 00:56
Send private message

For those who expose their Ubiquity router to the Internet, please run a Shields Up scan against your own device and post the results.

 

I'd like to know how yours compares to mine. Maybe a bit more tweaking via the CLI is required on my side.

 

Click to see full size

 

 

Create new topic
6547 posts

Uber Geek
+1 received by user: 2955

Moderator
Trusted
Subscriber

  Reply # 1785010 20-May-2017 08:56
Send private message

Yeah you've got something a wee bit iffy with your firewall configuration:

 

 

Did you follow the guide in my signature?




Michael Murphy | https://murfy.nz
Want to be with an epic ISP? Want $20 to join them too? Well, use this link to sign up to BigPipe!
The Router Guide | Electric KiwiCommunity UniFi Cloud Controller | Ubiquiti Edgerouter Tutorial

185 posts

Master Geek
+1 received by user: 35


  Reply # 1785016 20-May-2017 09:21
Send private message

Mine looks fine, although I was following a guide from the best wink

 

 
 
 
 


nas

205 posts

Master Geek
+1 received by user: 97


  Reply # 1785020 20-May-2017 09:32
Send private message

No issues with my ERL

 

8 posts

Wannabe Geek


  Reply # 1785135 20-May-2017 13:43
Send private message

All green and good - ERL and only using the default WAN rules from the intial setup.

 

"Your system has achieved a perfect "TruStealth" rating. Not a single packet — solicited or otherwise — was received from your system as a result of our security probing tests."

153 posts

Master Geek
+1 received by user: 19


  Reply # 1785769 22-May-2017 09:27
Send private message

I don't know what you're worried about/testing for - packet filter firewall tests are relevant to the 1990s - not the present.

What does this tag do
846 posts

Ultimate Geek
+1 received by user: 155

Subscriber

  Reply # 1785798 22-May-2017 09:52
Send private message

vulcannz:

 

I don't know what you're worried about/testing for - packet filter firewall tests are relevant to the 1990s - not the present.

 

 

Sorry but that is a broad sweeping statement. If more people used ShieldsUp we wouldn't have seen the rapid spread of WannaCrypt, or security cameras sitting on the public internet, etc etc.

3219 posts

Uber Geek
+1 received by user: 907


  Reply # 1785810 22-May-2017 10:16
Send private message

vulcannz:

I don't know what you're worried about/testing for - packet filter firewall tests are relevant to the 1990s - not the present.



Can you explain why?

The way routers can shield the internal network hasnt really changed for several decades.

Do you mean ipv6 negates security as devices are exposed to the internet?

153 posts

Master Geek
+1 received by user: 19


  Reply # 1785849 22-May-2017 10:42
Send private message

jnimmo:

 

vulcannz:

 

I don't know what you're worried about/testing for - packet filter firewall tests are relevant to the 1990s - not the present.

 

 

Sorry but that is a broad sweeping statement. If more people used ShieldsUp we wouldn't have seen the rapid spread of WannaCrypt, or security cameras sitting on the public internet, etc etc.

 

 

 

 

Wannacrypt spread primarily by email phishing attacks. Users clicks an email and that links to a dropped, dropper brings in malware. The IPS portion of wannacrypt was based on an SMB attack that usually happened once a PC within a network was infected.

 

 

153 posts

Master Geek
+1 received by user: 19


  Reply # 1785854 22-May-2017 10:50
Send private message

surfisup1000:
vulcannz:

 

I don't know what you're worried about/testing for - packet filter firewall tests are relevant to the 1990s - not the present.

 



Can you explain why?

The way routers can shield the internal network hasnt really changed for several decades.

Do you mean ipv6 negates security as devices are exposed to the internet?


 

No, I mean most of attacks have transitioned from packet/port attacks into the data payload. Having a router that does packet filtering is all fine and dandy, but the bad guys have moved on from that type of attack (well except for DoS/DDoS's which is still going to kill a packet filter). Shieldsup is nice to check for open ports, but if you use it to give you any sense of network security you're greatly mistaken.

 

A typical attack will involve phishing, a dropper, then they bring in their malware. All this is usually happening over SSL encrypted sessions.

 

 

 

 

 

 

What does this tag do
846 posts

Ultimate Geek
+1 received by user: 155

Subscriber

  Reply # 1785860 22-May-2017 11:00
Send private message

I don't think anyone was trying to use it as a measure of network security, but an indicator of insecurity. It is still important to know what ports are open, that you're not exposing management web interface or remote management ports.


153 posts

Master Geek
+1 received by user: 19


  Reply # 1785861 22-May-2017 11:03
Send private message

jnimmo:

 

I don't think anyone was trying to use it as a measure of network security, but an indicator of insecurity. It is still important to know what ports are open, that you're not exposing management web interface or remote management ports.

 

 

 

 

Yeah that I understand, but still you did say "If more people used ShieldsUp we wouldn't have seen the rapid spread of WannaCrypt"

 

 

 

 

3119 posts

Uber Geek
+1 received by user: 942

Subscriber

  Reply # 1785996 22-May-2017 14:53
Send private message

I think it's great a novice is at least checking their work. And shields up is a great tool to check all the basics... key things being open dns or ntp on routers getting used in amplification attacks.
Extremely relevant these days!

Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Symantec protects data everywhere with Information Centric Security
Posted 21-Sep-2017 15:33

FUJIFILM introduces X-E3 mirrorless camera with wireless connectivity
Posted 18-Sep-2017 13:53

Vodafone announces new plans with bigger data bundles
Posted 15-Sep-2017 10:51

Skinny launches phone with support for te reo Maori
Posted 14-Sep-2017 08:39

If Vodafone dropping mail worries you, you’re doing online wrong
Posted 11-Sep-2017 13:54

Vodafone New Zealand deploy live 400 gigabit system
Posted 11-Sep-2017 11:07

OPPO camera phones now available at PB Tech
Posted 11-Sep-2017 09:56

Norton Wi-Fi Privacy — Easy, flawed VPN
Posted 11-Sep-2017 09:48

Lenovo reveals new ThinkPad A Series
Posted 8-Sep-2017 14:37

Huawei passes Apple for the first time to capture the second spot globally
Posted 8-Sep-2017 10:45

Vodafone initiative enhances te reo Maori pronunciation on Google Maps
Posted 8-Sep-2017 10:40

Voyager Internet expand local internet phone services company with Conversant acquisition
Posted 6-Sep-2017 18:27

NOW Expands in to Tauranga
Posted 5-Sep-2017 18:16

Windows 10 Fall Creators Update coming Oct. 17
Posted 4-Sep-2017 14:10

Garmin introduce Garmin vivoactive 3
Posted 1-Sep-2017 18:38


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.