It does to an extent. It allows you to wake up and calmly make coffee instead of waking up to notifications that your router is compromised.
I see. I remove the default config entirely and start from scratch. Here is what is on the rb750 when it is shipped: http://stfunoo.be/?p=866 I think you're most concerned with the firewall filter rules. The blank config is vulnerable, more so than anything else. The rules on the default config probably isn't going to fit your situation, but I can't make that call. Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Fri, Sep 23, 2011 at 10:28 AM, Steve Jones <[email protected]>wrote: > does it make coffeee? > > I turn OFF the protect WAN because I assume it eliminate most rules. I want > a flat router with no rules other than subnet her goes there, my concern is > with it being preconfigured theres stuff im not aware of being present > > On Fri, Sep 23, 2011 at 9:16 AM, Josh Luthman > <[email protected]>wrote: > > > DO NOT use Webbox's protect WAN function. That deletes all rules and > adds > > only a couple of decent ones. Stop using Webbox pre v5. > > > > 1) You'd need to list out what you want to block and do the rules > > > > 2) Ask Butch for his one time fee awesome firewall that does > > dozens/hundreds > > of things > > > > Josh Luthman > > Office: 937-552-2340 > > Direct: 937-552-2343 > > 1100 Wayne St > > Suite 1337 > > Troy, OH 45373 > > > > > > On Fri, Sep 23, 2011 at 10:14 AM, Steve Jones <[email protected] > > >wrote: > > > > > These come set up as home routers, but I want to use them for a small 6 > > > customer POP to get a feel for the OS. Im concerned however that the > > router > > > has vulnerabilities that im unaware of with the extra default configs > of > > > being preset for the end user. I log into the web gui and turn off NAT > > and > > > "protect WAN" then in winbox i set the IPs and the dhcp relay and > remove > > > the > > > existing DHCP subnets, is there more I need to do with this? > > > -------------- next part -------------- > > > An HTML attachment was scrubbed... > > > URL: < > > > > > > http://www.butchevans.com/pipermail/mikrotik/attachments/20110923/811ce93f/attachment.html > > > > > > > _______________________________________________ > > > Mikrotik mailing list > > > [email protected] > > > http://www.butchevans.com/mailman/listinfo/mikrotik > > > > > > Visit http://blog.butchevans.com/ for tutorials related to Mikrotik > > > RouterOS > > > > > -------------- next part -------------- > > An HTML attachment was scrubbed... > > URL: < > > > http://www.butchevans.com/pipermail/mikrotik/attachments/20110923/2bdfa013/attachment.html > > > > > _______________________________________________ > > Mikrotik mailing list > > [email protected] > > http://www.butchevans.com/mailman/listinfo/mikrotik > > > > Visit http://blog.butchevans.com/ for tutorials related to Mikrotik > > RouterOS > > > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: < > http://www.butchevans.com/pipermail/mikrotik/attachments/20110923/6ddf802d/attachment.html > > > _______________________________________________ > Mikrotik mailing list > [email protected] > http://www.butchevans.com/mailman/listinfo/mikrotik > > Visit http://blog.butchevans.com/ for tutorials related to Mikrotik > RouterOS > -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://www.butchevans.com/pipermail/mikrotik/attachments/20110923/b8a96109/attachment.html> _______________________________________________ Mikrotik mailing list [email protected] http://www.butchevans.com/mailman/listinfo/mikrotik Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
