Archive

Posts Tagged ‘vpn router’

ISP Routers and How to Bypass Them

In a recent blog post, I documented how hard it was to have my clients ISP detail the instructions to “bridge” the ISPs provided router.  Life before when ISPs started providing router hardware was so much easier.  We controlled everything on the network and the ISP provided nothing but the connection. The ISPs started to provide their own hardware to make our lives “easier”.  They could look after things for us.  What they did not tell you was that they could now access your router.  Yes, they probably aren’t going to do anything except reset your password for you when you forget it, but in principal, it’s like giving your house keys to your neighbour: all you can do is hope they don’t come into your house and poke around in your stuff, but the possibly is always there.

There are several other reasons to use your own equipment besides just keeping the ISP out, including having more control over your network traffic, configuration for specific VPN connections, parental filtering and just using overall better hardware.  Personally, I don’t want my ISP to access their equipment in my home, so I am finally going to add a new router (with the functionality and control I want) into my home network.  I require parental controls and guest network access, which are not options on my ISP-provided equipment.

In order to use your own equipment, your ISP router/modem will have to be put into what is called Bridge Mode.  Bridge Mode enables traffic to pass through without restriction, allowing the equipment you supplied to control your data to your needs.  Depending on your ISP and equipment, this may not be an obvious setting.  Some ISPs would prefer that you don’t use equipment other than theirs.  Refer to the user manual or contact your ISP for assistance on how to do this.

My ISP-supplied router has a setting which easily allows me to turn on Bridge Mode.  This may not be the case with your equipment.  If you are unsure of how to change from Router to Bridge, contact your ISP or IT Professional.  If Rogers is your ISP, I have documented how to change to Bridge Mode in this article.

Bell Cisco Bridge

Enabling Bridge Mode allows all traffic to pass seamlessly to my router and I can fully control how it is handled.

Typical network layout for 2 routers. This could apply to your home or small office.

Don’t get me wrong, using the equipment supplied by your ISP is fine for your home and office, as long as you take some precautions:

  1. Change the router username and password
  2. Disable all unnecessary services and ports
  3. Change the Wi-Fi username and password
  4. Ensure the Wi-Fi encryption setting is set to at least WPA.

For more information on router security please see the article How to Secure your Router.

Also be aware that most ISPs will not support your connection if you are not using their hardware.  If you do require assistance you may need to set your router back to its original settings.  Also note that if your router is reset, all your settings will have to be re-configured.  It’s a good idea to either backup your settings (if possible) or write the settings down.

Enjoy taking control of your data and knowing you have made it one step harder for someone to access your network.

As with any changes on your network, please use best practises to safeguard your data. If you are unsure of how to secure your equipment, please contact your qualified IT Professional for assistance.

Does Your ISP have Control Issues?

Earlier this week one of my clients called, saying “The Bell technician just installed an upgraded internet service and now we don’t have Internet”.

I head down to find that the Bell technician had installed a new router and left the patch cable hanging. By hanging I mean not connected to anything.  I didn’t even know if the new equipment had been tested.

Not only was their patch cable home-made, it was not crimped correctly, which could have caused network disruptions, and considering what the client pays for this service, at the very least they should have been left with a proper patch cable.

Notice the difference?  The image on the top is properly crimped. The sheath (blue) is under the pressure point, whereas the one on the bottom (the actual cable the Bell technician left) the sheath (yellow) is not. The individual wires are crimped, causing damage and this connection makes it much easier to pull the cable away from the conductive ends which pass data, resulting in intermittent or no connectivity.

My client currently has a VPN router, which allows them to connect to another office.  Bell provided a new router which meant the VPN would not work with the new hardware without modification to the new equipment Bell provided.  If you want all technical jargon give me a call, but for the purposes of this post, I am keeping it straightforward and simple.  The new hardware had to be configured for Bridge Mode, but the router documentation did not explain how to do this, and I couldn’t find the answer online.  After several attempts to contact Bell (on hold for 30+ minutes, and still no answer), I finally had a technician that would assist with this.  (The first technician insisted I be on-site when configuring the router, but he would not provide instructions otherwise.)

I understand why ISPs do not want to have their customers using equipment they can’t access or monitor (that is a whole other rant), but they should not keep the instructions “hidden”.

Since Bell doesn’t believe in providing documentation on how to Bridge their devices, I have outlined the instructions below.  There is no reason why this should not be available.  Hopefully another small business isn’t stuck in the same position my client was in, because Bell has “control issues”.

Configuring Bridge Mode

Please note: if the unit is reset, it will need to be re-configured for Bridge mode

Steps for setting up Bell Router/Modem Bridge mode:

  1. Connect to the router 192.168.2.1
    1. Username: Admin
    2. Password: Admin
  2. Click on Network

  1. Then Disable DHCP.Save
  2. Re-connect
  3. Click Internet
  4. Remove User ID and Password. Save

The router should now be in Bridge Mode and data should now pass directly to the internal router.

Hope this helps!

%d bloggers like this: