I read that it&#39;s not intended to be, but I&#39;ve just installed Cerowrt as my primary router at home.  I was surprised by the fact that:<br><br>* The list of open/filtered ports in an external nmap is bigger than I expect.  I saw the explanation for some of them like ftp/telnet.<br>

* But one of them is DNS, and it&#39;s really open, and recursively resolving for the entire internet.<br>* And it&#39;s answering private (172.30...) names that the world shouldn&#39;t know.<br>* I haven&#39;t changed any firewalling rules, but the guest wireless (gw10) can see the lan (se00) addresses and communicate with them.<br>
<br>I&#39;m sure I could tweak the rules to &quot;fix&quot; all of these, but I&#39;m surprised that this is the default configuration.  And I&#39;m not yet 100% confident of the difference between the Firewall pane&#39;s &quot;General Settings&quot; and &quot;Traffic Rules&quot; yet, so I don&#39;t want to poke too much.<br>