DDNS Bang on Network Map Page

[WLD]

I was using an RT-AC66U for years when it died a quiet and peaceful death. I was able to access the GUI from the internet both on my phone and my work computer using the latest Merlin firmware. I replaced my deceased friend with an RT-AC68U and updated to the most recent Merlin 380.68_4. My enable web access from WAN is on and I am using the same DDNS host name. When using the iplookup.asus.com service, it identifies my user name and the IP address of my system.

On the Network Map page the DDNS:xxxx.asuscomm.com is followed by a big yellow ! bang. I cannot find the legend for this bang. When I hover over it, there is a grey bar that appears but there is no information.

I cannot access the system from outside the home.

Any thoughts?

Thanks!

 

[RMerlin]

Asus DDNS hostnames cannot be reused on a new router unless you have freed it first - authentication is done based on the router's MAC address. You will have to use a different name for the new router.

 

[martinr]

Welcome to the forum.

“My enable web access from WAN is on and .....”

Enabling web access from the WAN is so insecure that Asus has removed the option for HTTP access, and Merlin says don’t even set HTTPS access:

Simplest way is to wait for 382. With 382, Asus changed it so only HTTPS is allowed on the WAN, but you'll have both protocols available on the LAN.

Personally however, I do not recommend opening even HTTPS to the WAN. Asuswrt's web server is poorly secured, and has had numerous security issues over the years. Best to limit it to LAN only, and use a VPN to remotely access it.

If I were you I’d assume my router has already been hacked and I’d reflash it and manually re-enter my settings making sure the correct procedure including the factory reset is carried out.

See:

https://www.snbforums.com/threads/was-my-routers-username-and-password-hacked.36602/

Also:

https://www.snbforums.com/threads/n...l-and-manual-configuration.27115/#post-205573

 

[WLD]

Thank you for the replies. It was the name issue. I am aware of the security issue but need the parental control access from work. To that end, I'm using a NAT under the NAT which seems to resolve most of the security issues.

 

[martinr]

... which seems to resolve most of the security issues.

“Most”? Why not follow Merlin’s advice and set up OpenVPN. You’ve already got the Asus DDNS address, and setting up OpenVPN server on the router is equally as quick and easy.

 

[unsynaps]

Welcome to the forum.

“My enable web access from WAN is on and .....”

Enabling web access from the WAN is so insecure that Asus has removed the option for HTTP access, and Merlin says don’t even set HTTPS access:

If this is true (i actually hope it is. About damned time they removed a "feature" that should have never been there in the first place) I wonder how they are gonna do lets encrypt that i hear is on the roadmap for addition.

 

[RMerlin]

I wonder how they are gonna do lets encrypt that i hear is on the roadmap for addition.

Let's Encrypt was already added to select models last month.