Announcements
Don’t miss your chance to add AT&T Protect Advantage. Peace of mind, starting at $15 per month. Open enrollment ends 3/31. See all protection plans.

Contributor

 • 

1 Message

Sat, Sep 28, 2019 3:55 PM

Is it true you can't disable remote access for viewing? If so this is totally unacceptable.

I have the following device:

ManufacturerModel NumberSerial NumberSoftware Version

ARRIS
BGW210-700
 
1.10.9

 

I have disabled remote access. Another customer states that people can still view system information, IP address, MAC address etc.  If this is true it is completely unacceptable.  I work in the information security industry and this doesn't fly.  Please quickly confirm back that this is not true.

Thanks

Responses

Associated Member

 • 

251 Messages

5 months ago

What are you talking about?

Just to make sure I'm reading this right, you read somewhere that a random individual could gather system information, IP addresses and MAC addresses from a network they are not connected to? That just seems like a situation that anybody working in information security would know is not true.

If I'm misunderstanding, please elaborate on your concern.

*I am a trusted partner that is associated with AT&T, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.
Brand User
ATTHelp

Administrator

 • 

108.6K Messages

5 months ago

Hi there @Fiberguy1,

 

We're happy to address your concern!

 

With remote access disabled, no one should be able to see any system information.

 

We would need more details about the other customer's issue before we could explain what may have happened in that situation.

 

If you have any other questions or concerns, let us know! Thank you for reaching out to AT&T Community Forums!

 

Aminah, AT&T Community Specialist

*I am an AT&T employee, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.
tonydi

Guru

 • 

532 Messages

5 months ago

There's a lot of confusion going on here.  Remote Access in the BGW210 is used when you want to access the BGW's interface from outside of your network.  It has absolutely nothing to do with accessing a computer on your network from the Internet.

 

And @Fiberguy1 sure, there are ways to block some of those bits of information and some are necessary for you to even use your network and thus the Internet.  But none of those ways are provided by AT&T (or any other major ISP that I know of) for consumer accounts.  Of course as someone in the information security industry I would have thought you knew this already.

 

 

New Member

 • 

2 Messages

System Information

Manufacturer ARRIS

Model Number BGW210-700

Software Version 2.4.4

How do I disable all remote access to the router?

When I enable remote access I can only access via the randomly generated port. When I disable remote access I can no longer access the random port but can access port 443. I would like to disable ALL access to the router from outside the network. The Remote Access tab on the router is not helping.

my thoughts

Employee

 • 

14K Messages

@SystemEndUser disabling all access means having no internet connection...

unplug ethernet cables from devices and disable all wifi if desire no internet.

Or unscrible to internet service.

https://www.lifewire.com/what-is-port-443-4690657

What Is Port 443 For?

Have you ever seen the lock icon next to a URL in your browser’s address bar? Maybe you’ve even noticed "https://" rather than "http://" at the beginning of a website URL? In both instances, you’ve connected to a website using the secure HTTPS protocol instead of HTTP.

HTTPS on Port 443

Pixabay

HTTPS establishes an encrypted connection with a web server, rather than the unencrypted HTTP one. Since HTTP and HTTPS are two different protocols, they use two different ports. HTTP is available on port 80, and HTTPS is on port 443. Whenever you connect to a website beginning with "https://" or you see the lock icon, you’re connecting to that web server over port 443.

Why is Port 443 Important?

Port 443 is the standard port for all secured HTTP traffic, meaning it’s absolutely essential for most modern web activity. Encryption is necessary to protect information, as it makes its way between your computer and a web server. That encryption prevents things like your passwords and sensitive information displayed on pages (like banking info) from being snooped on by anyone along the way. With regular HTTP over port 80, everything exchanged between your computer and a website is available for anyone to see in plain text.

Port 443 also enables websites to be available over both HTTP and HTTPS. Most websites are configured to work with HTTPS over port 443, but if it isn’t available for some reason, the website will still be live over HTTPS on port 80. In the past, not every web browser supported HTTPS, meaning it wasn’t universally accessible. Now, though, most major browsers are moving to mark websites that don’t offer HTTPS traffic as insecure.

How to Use Port 443

When you’re browsing the web, there usually isn’t anything you need to do to connect over port 443. You can manually enter "https://" before the URLs you visit, but that usually isn’t necessary.

If you want to ensure you’re using HTTPS whenever possible, look into the HTTPS Everywhere add-on from the Electronic Frontier Foundation(EFF). It’s available for Chrome, Firefox, and Opera.

*I am an AT&T employee, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.

New Member

 • 

2 Messages

Thanks. You may not have understood my question. I don't want the router to be manageable from the WAN port, only from the LAN side. Disabling "Remote Access" via the GUI still allows the router to be accessed via the public IP on port 443. Enabling "Remote Access" via the GUI changed port 443 to a random port. I want remote management of the router disabled altogether.

my thoughts

Employee

 • 

14K Messages

Cannot disable remote management.... ATT needs it to push software updates as released and to access the gateway for troubleshooting when you call in.... testing from the gateway includes BBT, CPE, LPA which helps to determine your network responses as seen by ATT.

Please read the ATT Internet Terms Of Service (TOS) agreement, you agree not to interfere with ATT access to manage ATT equipment. If not acceptable, need to stop using the service and cancel the service... per the TOS.

https://www.att.com/legal/terms.internetAttTermsOfService.html

(edited)

*I am an AT&T employee, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.