.... OK simple question - why do you have 2 connections from the same provider? If the 2nd one is a backup isn't it better to use another ISP?
@Chip yes simple answer to that is they are two different places with two different connections I just happen to share my previous connection
experience and that airtel is easy to expose to the internet like port forwarding unlike jio with CG Nat And Locked Down
Router Even
Dns Hard To Change Even Without External Router So I go with Airtel. Unlike At Home Where I host websites for our hospitals and self hosted application like jellyfin. fileserver,guacamole,uptimekuma,duplicati for backups. Those Thing Run Behind Reverse Proxy And Have Static IP Dedicated To It And Run On ( X86
Ryzen Processors.) Very Simple And Humble Setup Not Complicated At All. Here In Delhi Where I Stay As Tenant I own 1
Raspberry Pi 4 (Arm Processor ) I like to host somethings Just To Tinker With Things 😄 Not Going Into Details Very Much. So Back At Home With
Nokia Ont It Was Easy Just Port Forward 443 And Proxy Everything.. Behind Reverse Proxy Easy. But With This New Router
ZyXEL It Is A Different New Ball Game. Both Port 443 and 80 Cannot Be Forwaded And Are Reserved For Router You Cannot Even Set It In Settings It Gives You A Promt I Have Shared That Screenshot Previously And As Mentioned By Another Person Very Polite Person
@rohitks told me that you should turn it off in remote management settings he was right but there is no way to turn it off in setting might be there but right now i am unable to find it.
.
So You Might Be Thinking That He is going on and on with his setup and port forward blah.. blah ...where is his security issue so where is security issue then which is the the main topic of this post so looks like both 80 and 443 port made the router gateway / login page accessible via my public ip on 11th September 2022 that is when i reported airtel that this is happening.. So If I typed my public ip in a browser i could access my router login page.. everyone in this forum is a technical savy in some extend and some are experts too.. we get into router gateway and change password that is admin for both username and password but to a average user who does not care of this and just wants an internet connection at the cheapest rates possible does not care what router he gets just wants internet to work and fast if anyone can get into his/her router with just admin and admin most common password for routers.
Firstly : I get we as consumers are not susceptible to attacks by hackers or anyone we have nothing to give to them there are various big organisations and companies that they rather work on to get data but to saying that as a reason to justify we should not have basic security measure for our routers at home is like closing eye to a problem.😏 if that is being paranoid then I am better off being paranoid.
Secondly :I also that I get free router i do not pay for anything for it and it is combo of router and modem but it has SpI firewall and but if username and password is admin what is the use of any
firewall you have got into the router A firewall is intended for preventing outside attacks if you know the credentials you get in the network end of story. 😉 I am not asking for world class security with encryption and all but if username and password is so easy dont expose it to the internet and at least give end user option to disable it. As I have previously shared my router was accessible via both port 80 and 443 via Public IP if i was not technical savy . My Problem Is Regarding This New Airtel ZYXEL Router.
Thirdly : If you are using internet you should forget about privacy and no device is hackproof no code is bug free i too know that but it is small steps like this that cause damage most big data breach of companies or other things have been caused due to small things just saying no one is trying to hack me who am i am none😁 I am nothing Now many will say what will anyone be able to do if anyone gets into the router there are may things one can do ..
My Intend Not Too Justify Myself But To Make It Clear That Security Issue is Security Issue Even If We Are Not Susceptible No One Is Trying To Hack Me I As I Am Nothing As I have Previously Said But To Justify Security Issue( With No One Is Trying To Hack You Attitude ! Its Ok) Is Not OK It Is Small Steps Like This Which Will Lead To Better And Secure Digital Infrastructure In The Future. With This I Have Tried To Justify The Title Of My Thread Which Is Not Clickbait Or Misleading In Any Way That I Think. I have shared the video and photo in my first post about the vulnerability that i found and reported on 11th September 2022. You Can Have a Look There. As Of Today That Is 15th September 2022 I am No Longer Facing That Issue After I Reported It To Airtel .