Root Admin AdvancedSetup Posted May 17 Root Admin ID:1637060 Share Posted May 17 (edited) If you own your own router and are not renting it from your Internet Service Provider and have signs of compromise or are simply suspicious of a possible compromise you may want to consider doing a factory reset of the router. Please ensure that you have the user manual for your router before considering performing a factory reset. Some notes and tips for the Router: Disable acceptance of ICMP Pings Change the Default Router password using a Strong Password Use a Strong WiFi password on WPA2 using AES encryption or Enable WPA3 if it is an option. Disable Remote Management Create separate WiFi networks for groups of devices with similar purposes to prevent an entire network of devices from being compromised if a malicious actor is able to gain unauthorized access to one device or network. Example: Keep IoT devices on one network and mobile devices on another. Change the network name (SSID). Do not use your; Name, Postal address or other personal information. Make it unique or whimsical and known to your family/group. Mitigate SSID Confusion attacks [CVE-2023-52424] by avoiding credential reuse across SSIDs by using a unique password per SSID. Example: One password for 2.4Ghz and a different password for 5.0Ghz. Is the Router Firmware up-to-date ? Updating the firmware mitigates exploitable vulnerabilities. Specifically set Firewall rules to BLOCK; TCP and UDP ports 69, 135 ~ 139, 161, 445, 1234, 3389, 5555 and 9034 Many Routers support Saving and Restoring settings from a file. It is suggested to make a backup by saving your Router's settings once it has been configured. Document passwords created and store them in a safe but accessible location. NOTES: The above suggested tips may be dependent upon one's preferences and the Router's capabilities. Same rule of applying Strong Passwords on all IoT devices, never retaining the Default. References: What is a Cable Modem? What is a Router? what is a Modem+Router? How To Reset Your Router Ports Database IANA official ports This article courtesy of @David H. Lipman Edited August 29 by AdvancedSetup Updated information 3 Link to post
Recommended Posts