Solved Hidden backdoor in my AT&T Gateway

[MasterChief]

No really, it doesn't work like that.

When a machine makes a request, the router/firewall knows which machine did so by its MAC address and allows the corresponding information to get to the requesting machine.

https://en.wikipedia.org/wiki/Network_address_translation

 

[broe23]

I know how routers work, along with how handling the ports is done. It is more then just a MAC ID, that the router & IPTables is looking at, when deciding how information is going. The best way to explain to most people that do not understand how a Firewall works, or how routing works, is to use the analogy of a entrance door on a building for how ports are treated, and a road map, in how routing is done.

And like I stated before. If you were to go in and stop the router from being able to handle any inbound or outbound requests, by shutting down all ports, you have nothing but a Boat Anchor at that point. Due to you would never be able to get out to the outside world, or have emails come into your email program when you go to retrieve them.

 

[Jcwisgod]

Well, the Netgear also filters incoming traffic, so unless you have opened a port on it, nothing is going to get through to your machines at all without request. (Unless perhaps exploited with its own vulnerability - they have them believe it or not.) What that means is things you solicit, such as web browsing, and all other general usage works and things you did not solicit, will not.

Disable uPnP on Netgear for good measure.

So, it is secure in that aspect, but still - someone can access your AT&T without your permission. (Notably, likely ISP.)

Yea it's all blocked by default I believe, I got UpnP disabled on it and remote connection, etc.

 

[Jcwisgod]

About to just put the Gateway in bridge mode for the 2wire, and use the Netgear as the Hardware Firewall, just not 100% sure on how to do it

There is no longer a "Bridge" mode for the Pace gateways. It is now DMZ Plus, which you use to allow devices full open access to the Internet.

If you are connected to the Internet, and worried about someone watching what you are doing, it is too late now. Regardless what people think that they can hide what they are doing, those days have gone away.

Not worried about anyone watching what I'm doing, I use an VPN most the time.

 

[broe23]

About to just put the Gateway in bridge mode for the 2wire, and use the Netgear as the Hardware Firewall, just not 100% sure on how to do it

There is no longer a "Bridge" mode for the Pace gateways. It is now DMZ Plus, which you use to allow devices full open access to the Internet.

If you are connected to the Internet, and worried about someone watching what you are doing, it is too late now. Regardless what people think that they can hide what they are doing, those days have gone away.

Not worried about anyone watching what I'm doing, I use an VPN most the time.

VPN does not cover your tracks. Again, anything you do, regardless how you do it, your activities are still being watched. VPN does nothing, but gives you a false sense of security.

 

[Jcwisgod]

There is no longer a "Bridge" mode for the Pace gateways. It is now DMZ Plus, which you use to allow devices full open access to the Internet.

If you are connected to the Internet, and worried about someone watching what you are doing, it is too late now. Regardless what people think that they can hide what they are doing, those days have gone away.

Not worried about anyone watching what I'm doing, I use an VPN most the time.

VPN does not cover your tracks. Again, anything you do, regardless how you do it, your activities are still being watched. VPN does nothing, but gives you a false sense of security.

https://en.wikipedia.org/wiki/Virtual_private_network

 

[MasterChief]

VPN does nothing, but gives you a false sense of security.

I am amused enough to the point that I have to ask on behalf of everyone: Are you trolling?

lol quite good if so.

 

[Jcwisgod]

VPN does nothing, but gives you a false sense of security.

I am amused enough to the point that I have to ask on behalf of everyone: Are you trolling?

lol quite good if so.

Lmao guess I'm not the only person thinking that

 

[broe23]

VPN does nothing, but gives you a false sense of security.

I am amused enough to the point that I have to ask on behalf of everyone: Are you trolling?

lol quite good if so.

No, but you can think that in your head if you want. You are welcome to your own opinion.

 

[broe23]

VPN does nothing, but gives you a false sense of security.

I am amused enough to the point that I have to ask on behalf of everyone: Are you trolling?

lol quite good if so.

Lmao guess I'm not the only person thinking that

Usually I find that when people start making that statement publicly on a forum, they are stuck in a corner, because they just got it handed to them. I have been in this business for over 36 years, and this is not my first Rodeo, dealing with this FUD, about a supposed "Backdoor" on the Pace Gateways. Now on the Cisco Routers, there is actually a real backdoor. If you have UPnP, it still has a "Backdoor" in it, that can be accessed by someone that knows what they are looking for. Same with WPS.

I do not welcome your opinion, but it is obvious from the start, who was taking what the OP fed them.

 

[MasterChief]

I quite enjoy doing the volunteer work I do on this site, so I am not about to do what I am well known for and risk being banned.
It's not that I am saying that I wish to be mean in any way, but I don't want to risk being perceived like that.

So it's a lucky day for all, I guess.

 

[Jcwisgod]

Thanks @Matt & Chief