Thursday, February 25, 2016

firewall - Using a dynamic dns securely



I'm bit of a newcomer when it comes to networking, firewalls and port forwarding - please bear with me:



I've just setup a dynamic DNS that points to my external IP and are handled through my Cisco router. Everything fine so far.

When I visited my DNS through the browser, http://exampledynamicdns.com, I got redirected to the backend GUI of my router - kind of expected, but still not cool.



So to prevent my Router settings from being available on the interwebs, I did a port forward of port 80 to a non-existent IP on my LAN.



Is this a good practice or not?


Answer



Sure. This is an acceptable workaround.



Better would be to configure the router not to expose the web interface for external IPs, configure it to run on a separate port than 80, password-protect the web interface. But sometimes you have these very cheap routers that can't be configured that way. Buying a better one is recommended but not necessary.


No comments:

Post a Comment

linux - How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. S...