[Bloat] New Cerowrt user; surprises
Anthony Lieuallen
arantius at gmail.com
Wed Oct 24 09:50:36 EDT 2012
I read that it's not intended to be, but I've just installed Cerowrt as my
primary router at home. I was surprised by the fact that:
* The list of open/filtered ports in an external nmap is bigger than I
expect. I saw the explanation for some of them like ftp/telnet.
* But one of them is DNS, and it's really open, and recursively resolving
for the entire internet.
* And it's answering private (172.30...) names that the world shouldn't
know.
* I haven't changed any firewalling rules, but the guest wireless (gw10)
can see the lan (se00) addresses and communicate with them.
I'm sure I could tweak the rules to "fix" all of these, but I'm surprised
that this is the default configuration. And I'm not yet 100% confident of
the difference between the Firewall pane's "General Settings" and "Traffic
Rules" yet, so I don't want to poke too much.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.bufferbloat.net/pipermail/bloat/attachments/20121024/604aa758/attachment-0002.html>
More information about the Bloat
mailing list