Login page on WAN port?!
Hi TP-Link!
Today i just set up CNAME on my DNS service and discover my ER605 login page are accessible from WAN!
Are you kidding me TP-Link?
I walk around Omada v5.9.31 on Linux and can't find any option related to port/services on WAN side ...
Let me know where i can disable HTTP/HTTPS ports from WAN ;)
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Checked, and i'm wondering why access from WAN isn't disabled by default (as any no-Omada router is)?
This is security issue with my Omada IP showed on login page ...
Anyway this is not answer for my question.
- Copy Link
- Report Inappropriate Content
OK, so it seems to gateway (should be name as router) allow reach ports from LAN on WAN side (WAN from ousite are correctly blocked), but how from TP-Link can answer me why i can reach services on WAN from LAN? What was to purposes?
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
When you have possibility to RDP external Windows and check all things (nmap in linux), then you want to keep local services quiet on WAN address, even if you ask for it from LAN.
Question is still open ;)
- Copy Link
- Report Inappropriate Content
- Copy Link
- Report Inappropriate Content
Hi @d0ugmac1
There is many thing which are turned on by default, which shouldn't be is business class device/software. That's the thing to discuss.
Anyway, WAN address shouldn't be resolve by gateway in default configuration and there is no option to turn it off (excluded ACLs).
- Copy Link
- Report Inappropriate Content
Totally agree with you that too many options are enabled by default.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 666
Replies: 8
Voters 0
No one has voted for it yet.