If you manage CPEs remotely it's easier to block port 80 via an ACL and apply that to the radius account like so until a fix:
access-list 150 permit tcp mgmt_range any eq www access-list 150 deny tcp any any eq www access-list 150 permit ip any any Cisco-Avpair += "lcp:interface-config=ip access-group 150 out" Thanks Darren http://www.mellowd.co.uk/ccie > From: [email protected] > To: [email protected]; [email protected] > Date: Mon, 13 Jan 2014 11:30:29 +0000 > CC: [email protected] > Subject: Re: [uknof] ADSL issues with Zyxel routers > > Hi, > > There's a vuln out there affecting zyxel routers. The only solution at this > time is to disable remote management until there's a patch. > > Best regards, > > James Greig > > Nuco Technologies Ltd > Unit 1 Northampton Science Park, Moulton Park Industrial Estate, Northampton, > NN3 6LG > Tel: 0844 745 1300 - Fax: 0844 745 1303 - email: [email protected] > <mailto:[email protected]> > Relevant site: http://www.host-it.co.uk <http://www.host-it.co.uk/> > > Group : www.nucotechnologies.com <http://www.nucotechnologies.com/> > > -----Original Message----- > From: uknof [mailto:[email protected]] On Behalf Of Stuart > Henderson > Sent: 13 January 2014 11:27 > To: Chris Bagnall > Cc: [email protected] > Subject: Re: [uknof] ADSL issues with Zyxel routers > > On 2014/01/13 11:15, Chris Bagnall wrote: > > Greetings list, > > > > Has anyone been seeing problems with Zyxel ADSL routers on BT > > Wholesale over the last 2-3 days? > > > > I've seen about 30 connections in very different parts of the country, > > and with different ISPs, offline this morning. Common elements seem to be: > > - Zyxel P660 router > > - BT Wholesale ADSL > > - brings PPP session up for about 60 seconds, then disconnects, > > retries, > > 60 secs connected, disconnect, etc. ad infinitum > > > > This doesn't seem to be affecting connections with other > > manufacturers' ADSL modem/routers, nor does it seem to affect LLU > > connections with Zyxel units. > > > > Anyone else seeing anything similar? > > A&A have been seeing problems with Zyxels, seemingly connected with having > remote access to the web interface enabled. http://s.aa.net.uk/1877 > > >
