protecting dreamboxes

looks like thats there the problem is with dmz any ideas guys at my wits end

forgot to say when i go into wan settings in netgear when i untick dmz the d800 dosnt do what i want it to let people recieve things

you need to enable port forwarding to you server port default is 12000

already done that mate it must be something stupid by the way using nabilo v 12 image clone

check that you have not got the dm800 on dhcp as might have got a diff ip from what you have told the router to transfer port 12000 to

not on dhcp just checked i have a d8000 downstairs on ip 7 and d800 upstairs on ip 24

you must check you have set port forward to the dm800 12000 to port 24 yes is this set?

His external ip dont change either,checked his dyndns account.
Ken.
ps,yes his port is forwarded to his dreambox ip.

You must be using port 80 or something which is an open port for the internet, make sure you are using 12000 or something or everyone can use it, also config your your Camconfig file in Var Correctly with the details / Ports on the router


There are only two way to find yourself been hacked on a dreambox ....Here they are

If your Dreambox is under attack it can only be two things...

1: Your Internet service Provider is not happy with the traffic coming from your router, using a Dyndns Account or other Mailserver/Webserver this can draw attention and be breaking your tearm & agreaments of your Internet service, you could start finding that certain Ports will start been closed and eventually the Dyndns port you are sharing on been switched off.

This can look like someone is Hacking your Dreambox because of the interferance of the router and the receivers settings.

2: The only people who could Hack your receiver are the people who you have shared with you in the past or a current users, As it is very hard to guess a Dyndns account name that you have entered onto your receiver this is only given by you to those you are/have shared with in a C: line

So It is someone you know or someone you previously shared with, if this is a constant attack change your Dyndns Account and Port Number & issue your shares a new C:line.

I would be more inclined that its nothing more than your ISP not been happy and switching off ports in a bid to stop what they call Spam from port 25 you will most likely receive a letter a some stage.

Run a check on your Port 25 and see if it has been blocked, if it has then they are trying to switch off Peer to Peer Port on you, its more of an inconvenience than an attack or Hack.

hi mate thanks for the reply,i helped set him up(using msn) i used a different port for him,not one which is usually open,only forwarded one port to dreambox,i noticed he had been hacked a while back,somone else was using his cline off me(different ip to his server ip)checked using cccam info,i can still see his dreambox webcontrol when using his dyndns name to access his dreambox but cant see any files,is his box now safe or can we make it safer.
many thanks
Ken.

If they no longer have an account with you how can they access your server? Is there a backdoor on the port?

If you can see his webcontrol it means he is still in the dmz. This means other standard ports will be open too (e.g. 21 for telnet etc.). This maybe ok but as I said before the better option is always to only forward what you need. So get port forwarding working, that way 80, 21, etc. will not be accessible from outside. Only the one port used should be open. I am not saying he is not safe enough now, but opening only what you need is safer.

I maybe wrong but DMZ is sometimes referred to as the 'De-militarised Zone' basically leaving you open to the whole internet. I have always understood that DMZ is the one thing you do not want to do on your router.

http://hoople_ny.tripod.com/dmz.html