quick menu

Turn off IGMP and UPnP for better router security??

Turn off IGMP and UPnP for better router security??

SOLVED
Reply
Copper Contributor SpeedThree
Copper Contributor
Posts: 45
Registered: ‎07-07-2012
Message 1 of 3
(2,708 Views)

I was reading a piece in Wired recently about security and the Internet of Things, and the discussion included router vulnerabilities and how the UPnP settings on one’s router leave the it vulnerable to attack.

That led me on a hunt through my files and I discovered this tidbit I saved back in 2014.

http://192.168.1.1/index.cgi?active_page=6059
Paste this URL into the Address line of your browser once you have accessed the Actiontec settings and it will open up a hidden page where you can disable the IGMP Proxy.


I found an Actiontec video on YouTube discussing setting up UPnP for devices like the Xbox.  The video mentioned this hidden page on the router.
http://192.168.1.1/index.cgi?active%5fpage=900


When I input the first URL, I found that the IGMP Proxy was enabled; something which may have happened when Verizon updated the router firmware.  I am tempted to disable it again.

When I went to the second URL, UPnP, I found the box checked for <Allow other network users to control wireless broadband router’s network features>

And ditto for the box checked for <enable automatic cleanup of old unused UPnP services>

Before I do something I will regret, I’d sure appreciate some advice from some of the sage old hands here.

 

Many thanks

2 REPLIES
Platinum Contributor II Platinum Contributor II
Platinum Contributor II
Posts: 7,261
Registered: ‎12-15-2010
Message 2 of 3
(2,682 Views)

UPnP should always be disabled unless you have a specific need for it, such as having multiple game consoles in the house.

 

IGMP proxying should be left enabled unless it causes problems. This allows the router to convert Multicast traffic into Unicast traffic, allowing for the network especially wireless devices, to work more efficiently.

Contributor TEEKIZZLE
Contributor
Posts: 1
Registered: ‎12-03-2018
Message 3 of 3
(258 Views)

Not sure if these are still applicable but this shows several forms of upnp that aren't able to be disabled

 

https://www.tenable.com/security/research/tra-2017-35

 

While testing improvements to the Nessus UPnP implementation we found an information disclosure vulnerability in Verizon's Fios Quantum Gateway G1100. The G1100 has three listening UPnP servers. One the user can disable and two they cannot. This advisory concerns the UPnP server on port 1901 that the user cannot disable.

How-To Videos
 
The following videos were produced by users like you!
   
Videos are subject to the Verizon Fios Community Terms of Service and User Guidelines and contains content that is not created by Verizon.
My Fios App

Verizon Troubleshooters
Unable to find your answer here? Try searching Verizon Troubleshooters for more options.
 

My Verizon

  • Add or Change Plan
  • Suspend My Service
  • Apps

Support

Watch Fios