B100NL Posted November 15, 2020 Share Posted November 15, 2020 I get alot of notifications of DOS attacks and remote logins.. Also a few remote login attemps from several ips including 192.168.178.1 but .1 isnt a port im using neither is a device using that ip (asfar as i can see in device management) Are these false positives? log-1605416320232.txt Link to comment Share on other sites More sharing options...
Zippy Posted November 15, 2020 Share Posted November 15, 2020 Do you have IPV6 enabled? Also what device is the remote login connecting to? Thanks! Zippy. Link to comment Share on other sites More sharing options...
B100NL Posted November 15, 2020 Author Share Posted November 15, 2020 No ipv6 is disabled, and its mostly trying to connect to my xbox over port 80 Link to comment Share on other sites More sharing options...
Newfie Posted November 15, 2020 Share Posted November 15, 2020 Disable remote access, that may cure the lan access issues. those DOS attacks are doing their rounds, I’ve seen them on the 50002 as has my friend and the routers firewall is working as intended. Link to comment Share on other sites More sharing options...
B100NL Posted November 15, 2020 Author Share Posted November 15, 2020 I already disabled it, keeps telling me that it tries to remote acces but im on 3.0 firmware though. I also get error in ARP line table error. Could one of the above things cause my internet to be verybad atm? keep getting instakilled (or im just bad). Link to comment Share on other sites More sharing options...
Newfie Posted November 15, 2020 Share Posted November 15, 2020 37 minutes ago, B100NL said: I already disabled it, keeps telling me that it tries to remote acces but im on 3.0 firmware though. I also get error in ARP line table error. Could one of the above things cause my internet to be verybad atm? keep getting instakilled (or im just bad). I would say the remote access is not getting through unless it’s tied up with Netduma and Fraser can confirm that. I’m also unsure if the Beta carries Netgears latest security updates and again Fraser will have to confirm that. Link to comment Share on other sites More sharing options...
Administrators Netduma Fraser Posted November 15, 2020 Administrators Share Posted November 15, 2020 The DOS attacks can definitely be ignored, they just show generic connections that have been made - one was to Microsoft for example. I would hazard to guess the remote login attempt is actually the upstream router. What is the WAN IP shown in System Information? Link to comment Share on other sites More sharing options...
Zippy Posted November 15, 2020 Share Posted November 15, 2020 If one is getting remote login to your xbox that is normal if you are using one of the following.. Port forwarding, Port triggering, and or DMZ on the xbox.. If your using one of those three then its normal behavior for you to see those connections in your logs.. Hopefully that helps.. I use port triggering and get those same remote log entries in my logs.. Thanks! Zippy. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.