I'm having an issue with my Nokia GPON router where it's logging hundreds of failed login attempts from a bunch of strange sources, and I'm curious about what's happening. I keep seeing requests like ` ... ssh: [176.120.22.13] login failed`, which according to a lookup site is linked to Russia, specifically a Proton server. There are other attempts from addresses like [176.120.22.47] with different usernames and even an alarming connection from a data center in Ho Chi Minh City. Given that most attempts are through SSH, is this a sign that someone is trying to brute-force my router? How can I protect my network from these types of attacks? I'd appreciate any advice! Thanks!
5 Answers
First off, make sure your router doesn't allow admin access from the WAN. If it does, turn that feature off. It's a simple step that can significantly increase your security.
+1 to that advice. It’s straightforward and effective.
These kinds of SSH scans are pretty routine. They're often part of broader botnet activities, looking for weak systems. It's a good idea to follow some best practices:
- Turn off SSH if you don’t need it.
- If you must use it, switch it to a non-standard port.
- Set up limits on who can access it based on your location.
- Consider using a tool like fail2ban to block repeated failed logins.
Thanks, I'll look into that!
Consider disabling SSH altogether and ensure your router's admin page isn't accessible from the internet. That's a smart way to avoid unnecessary risks!
Appreciate it!
Sounds like someone is indeed trying to break in. Just a heads-up — I think disabling SSH and changing your admin password was a smart move. That should help tighten security.
I did change the admin password and turned off SSH from WAN access. Should that be enough to keep me safe?
No need to panic! Those attempts likely aren't targeted at you specifically. They're probably just bots scanning for vulnerabilities. Just ensure you’ve changed the default username and password, and keep your router's firmware updated. That should help a lot!
Thanks a lot for the reassurance!
Thanks for the heads-up!