Forum Thread

FIOS logging and firewalling

dealgate 6,348 1,085 June 2, 2016 at 02:54 PM
Can I put a "real" hardware based firewall between my home network and the FIOS router? I also want to have "real" logging where I can review logs and see where each IP address went. I am assuming any logs would need to be put through a log reader so any ideas on that appreciated!

4 Comments

1

Sign up for a Slickdeals account to remove this ad.

#2
Quote from dealgate View Post :
Can I put a "real" hardware based firewall between my home network and the FIOS router? I also want to have "real" logging where I can review logs and see where each IP address went. I am assuming any logs would need to be put through a log reader so any ideas on that appreciated!
Sure. Lots of different options...

You can do away with the fios router all together and configure something else to handle the PPPoE. Something like an EdgeRouter Lite would work well on fios.

You can buy an off the shelf security appliance

You can build your own firewall with a pc or single board computer with 2 NICs and free or paid software like https://pfsense.org, http://www.shorewall.net/, http://www.ipfire.org/, http://www.untangle.com/, http://www.smoothwall.org/, or http://www.endian.com/community/comparison/

also https://www.sophos.com/en-us/prod...ition.aspx

You can also deploy the paid version of OpenDNS to get more features and enable Syslog on your router and set up a PC to collect the log info.

There are just lots of choices as far as what you want and how you set it up. Do you want VLANs, which device handles NAT and DHCP, do you want a VPN server, do you care enough to use a device that requires a subscription to up to date firewall rules, do you want more than 1 public ip, etc.
Reply Helpful Comment? 1 0
Last edited by jkee June 2, 2016 at 04:21 PM
Joined Dec 2003
L10: Grand Master
26,862 Posts
3,306 Reputation
#3
You can give your secondary router a static IP from the Fios router. For example, 192.168.0.2. Then, turn off the firewall and forward all ports to that IP. Then, have the secondary router give out IPs in a different range (192.168.1.1). This is how I'm using my TP-Link VPN router instead of my Fios router. I can't totally get rid of it because I have Fios TV boxes. When anything from the internet hits my public IP, it goes straight to the firewall on my TP-Link.
Reply Helpful Comment? 2 0
Joined Dec 2005
L10: Grand Master
6,348 Posts
1,085 Reputation
Original Poster
#4
I found out about a BS hidden menu on the FIOS router that you can access to disable "upnp" which automatically creates port forwarding rules on your router INTO your network. I keep seeing this appear and found this menu and turned it off. This is how applications like torrents are able to make your house a torrent hub without your knowledge along with a whole host of backdoor access into your network.

This works on most broadband routers not just FIOS. Access it and turn it off!

http://192.168.1.1/index.cgi?active%5fpage=900
Reply Helpful Comment? 0 0
E finita la cuccagna

Liberals want you to think like them, Conservatives just want you to think!
#5
Quote from dealgate View Post :
I found out about a BS hidden menu on the FIOS router that you can access to disable "upnp" which automatically creates port forwarding rules on your router INTO your network. I keep seeing this appear and found this menu and turned it off. This is how applications like torrents are able to make your house a torrent hub without your knowledge along with a whole host of backdoor access into your network.

This works on most broadband routers not just FIOS. Access it and turn it off!

http://192.168.1.1/index.cgi?active%5fpage=900
NAT traversal is possible without port forwarding / UPNP. Apps just have to keep an active connection to an outside server. TeamViewer works like this.
Reply Helpful Comment? 0 0
Page 1 of 1
1
Join the Conversation
Add a Comment
 
Copyright 1999 - 2016. Slickdeals, LLC. All Rights Reserved. Copyright / Infringement Policy  •  Privacy Policy  •  Terms of Service  •  Acceptable Use Policy (Rules)  •  Interest-Based Ads
Link Copied to Clipboard