DDNS is set. Can ping hostname, but can't reach router login page

T_T · Jun 13, 2016

ISP: Time Warner Cable
Friend's home network hardware:
Modem: Motorola Surfboard SB5101u (modem only model)
Router: Asus RT-AC66U
Router Settings:
DDNS is enabled with hostname of awaya.asuscomm.com.
HTTPS is enabled (problem exists with just HTTP as well).
Firewall is enabled (by default).

First of all, let me say that since this is a friend's house, I won't be making suggested adjustments right away.

Second, I am familiar with how to setup this router, as I have one of my own with DDNS enabled and I am able to remote control my router from WAN.

Problem: I can't get to the router's login page, unless using the computer connected, via Cat5, to the router. I have tried using both HTTP and HTTPS, neither protocols help. I can ping the hostname from any computer and the IP is resolved. Also, nslookup can resolve the IP.

I don't have any reason to believe that the modem or ISP is blocking ports, considering the IP can be resolved against the hostname, but I can't be sure. When I configured the settings, I did notice that the Network Status does show the public IP

I have also double checked my friend's router settings against mine, and can find no applicable difference. I am with the belief that despite getting a public IP, there is some configuration issue between modem and/or ISP and router. So, at this point, I'm stumped and open to suggestions.

Solandri · Jun 14, 2016

Most routers block access to the router login/configuration page via the WAN port. A few will let you enable it in the settings. On the Asus RT-AC66U, this setting should be under Administration -> System -> Enable web access from WAN.

If you insist on doing this, I strongly recommend you set the authentication method to https (so nobody can snoop your password while you're logging into your router), and you enable the "Only allow specific IP" option and enter the IP address(es) from where you're going to be accessing the router. Especially since you've just told everyone your DDNS domain name in your original post, so anyone reading that post can try to login to and hack your router.

The better way to do this is to leave the prohibition on WAN web access, and enable the VPN server on the router. Then you can login to the router (and your home network) from outside via the VPN. Once you've done that, you can access the router's login/configuration page from the LAN side via the VPN. This way there's no risk of someone accidentally stumbling onto your router's login/config page from the WAN side, and managing to hack it to give himself access to your network.

T_T · Jun 14, 2016

Solandri :

Most routers block access to the router login/configuration page via the WAN port. A few will let you enable it in the settings. On the Asus RT-AC66U, this setting should be under Administration -> System -> Enable web access from WAN.

If you insist on doing this, I strongly recommend you set the authentication method to https (so nobody can snoop your password while you're logging into your router), and you enable the "Only allow specific IP" option and enter the IP address(es) from where you're going to be accessing the router. Especially since you've just told everyone your DDNS domain name in your original post, so anyone reading that post can try to login to and hack your router.

The better way to do this is to leave the prohibition on WAN web access, and enable the VPN server on the router. Then you can login to the router (and your home network) from outside via the VPN. Once you've done that, you can access the router's login/configuration page from the LAN side via the VPN. This way there's no risk of someone accidentally stumbling onto your router's login/config page from the WAN side, and managing to hack it to give himself access to your network.

Thank you. I will give the VPN idea a shot. I appreciate your taking time to respond to my inquiry. I'll report the results of this effort.

T_T · Jun 14, 2016

Solandri :

Most routers block access to the router login/configuration page via the WAN port. A few will let you enable it in the settings. On the Asus RT-AC66U, this setting should be under Administration -> System -> Enable web access from WAN.

If you insist on doing this, I strongly recommend you set the authentication method to https (so nobody can snoop your password while you're logging into your router), and you enable the "Only allow specific IP" option and enter the IP address(es) from where you're going to be accessing the router. Especially since you've just told everyone your DDNS domain name in your original post, so anyone reading that post can try to login to and hack your router.

The better way to do this is to leave the prohibition on WAN web access, and enable the VPN server on the router. Then you can login to the router (and your home network) from outside via the VPN. Once you've done that, you can access the router's login/configuration page from the LAN side via the VPN. This way there's no risk of someone accidentally stumbling onto your router's login/config page from the WAN side, and managing to hack it to give himself access to your network.

Thank you. I will give the VPN idea a shot. I appreciate your taking time to respond to my inquiry. I'll report the results of this effort.

T_T · Jun 20, 2016

Solandri :

Most routers block access to the router login/configuration page via the WAN port. A few will let you enable it in the settings. On the Asus RT-AC66U, this setting should be under Administration -> System -> Enable web access from WAN.

If you insist on doing this, I strongly recommend you set the authentication method to https (so nobody can snoop your password while you're logging into your router), and you enable the "Only allow specific IP" option and enter the IP address(es) from where you're going to be accessing the router. Especially since you've just told everyone your DDNS domain name in your original post, so anyone reading that post can try to login to and hack your router.

The better way to do this is to leave the prohibition on WAN web access, and enable the VPN server on the router. Then you can login to the router (and your home network) from outside via the VPN. Once you've done that, you can access the router's login/configuration page from the LAN side via the VPN. This way there's no risk of someone accidentally stumbling onto your router's login/config page from the WAN side, and managing to hack it to give himself access to your network.

I know, the update is kind of late, but credit must be given where due. Such a simple oversight, but the setting to allow router access over WAN was indeed the overlooked setting. Thank you for pointing me in the right direction.

Search

DDNS is set. Can ping hostname, but can't reach router login page

T_T

Splendid

Solandri

Solandri

Illustrious

T_T

Splendid

T_T

Splendid

T_T

Splendid

TRENDING THREADS

Latest posts

Moderators online

Share this page