How to make router out of security difficulties

[little-Jacqueline]

Hi all,

Many network administrators do not realize that their attacks on routers can become hot, the router operating system with network vulnerable to hackers. Most SMEs do not hire router, engineers did not consider this feature as a must to do outsourced. Therefore, network administrators and managers who are neither fully understand nor time to ensure that the router's security. So I need some router safety skills. Please suggest. Thanks in advance.

[Spyrus]

You need to update your router operating system. the same as network operating systems, routers, operating systems need to be updated in order to correct programming errors, software defects, and buffer overflow problems. Always to your router manufacturer has the current updates and OSVersion. Check and reply.

[Snake08]

You need to disable HTTP settings and SNMP (Simple Network Management Protocol): Your router's HTTP Settings section for a busy network administrator is very easy to set up. However, this router is also a security issue. If your router has a command-line settings, disable the HTTP method and the use of this set up. If you do not use your router's SNMP, then you do not need to enable this function. There is a Cisco router vulnerable to attack GRE tunnels SNMP security vulnerabilities. All the best.

[Steve123]

You need to block ICMP (InternetControl Message Protocol) ping requests: ping and other ICMP functions for network administrators and hackers are a very useful tool. Hackers can use your router to enable the ICMP features to find your network can be used to attack information. Just disable the telnet command from the Internet: In most cases, you do not need to come from internet interface is active telnet sessions. If you access your router from the internal settings will be more secure. Best of luck.

[Big Fish]

You need to disable IP Directed Broadcast: IP directed broadcast on your equipment can allow a denial of service attacks. A router memory and CPU unbearable too many requests. Such a result will lead to buffer overflows. Also disable IP routing and IP re-orientation: Re-directed to allow the data packets from one interface, and then came out from another interface. You do not need to elaborate the data packet to be redirected to a dedicated intranet. Check and reply.

[Zachary]

Packet filtering to deliver only you allow into your network, the kind of packets. Many companies only allow port 80 (HTTP) and the 110/25 port (e-mail). In addition, you can block and allow the IP addresses and scope. To review the security records: by simply use some time to review your log files, you will see a significant attack, and even security vulnerabilities. You will give you experience so much surprised by the attack. All the best.