Business Community > Routers > Prone for Man in the Middle attack VLAN 1 (DEFAULT) cannot be disable.
< Routers

Prone for Man in the Middle attack VLAN 1 (DEFAULT) cannot be disable.

Prone for Man in the Middle attack VLAN 1 (DEFAULT) cannot be disable.

Prone for Man in the Middle attack VLAN 1 (DEFAULT) cannot be disable.
Prone for Man in the Middle attack VLAN 1 (DEFAULT) cannot be disable.
2025-02-03 01:45:21 - last edited 2 weeks ago
Tags: #VLAN & Multi-Networks #VLAN
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.2.6

Good day.

 

I Would like to share with you on the DEFAULT VLAN which is VLAN 1.

When we decide to make a management vlan, The defualt vlan 1 should not be included in the trunk.

but unfortunately, the vlan 1 cannot be disable nor cannot be configured.
this is not safe. I can still ping the 192.168.0.1 which is the router. 

and all the ports on the router are still be able to ping  and access the vlan 1.

are there any firmware update on this?

 

By the way, i am using OC200 on my house.

  0      
 
  0      
 
#1
Options
2 Reply
Re:Prone for Man in the Middle attack VLAN 1 (DEFAULT) cannot be disable.
3 weeks ago

Hi @Shadowrelic7 

Thanks for posting in our business forum.

But what does it have anything dangerous if you can only ping the default gateway IP?

When you create multiple VLAN interfaces, the default gateway for each VLAN is also pingable. This is common and normal.

That's the same thing for the Openwrt and other system.

 

When you block the ping, it could also affect other services. I have seen cases where you block the ping, you affect other services. You can look it up on the forum.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#2
Options
Re:Prone for Man in the Middle attack VLAN 1 (DEFAULT) cannot be disable.
2 weeks ago

  @Clive_A Good day. HI Sir. Clive, Thank you for replying. It's Just that the VLan 1 is also trunked which is not be trunk. In my Cisco switches for security purposes, i dont include vlan 1 to pass thru the trunk. but here (referring to the image) you cant even disable or exclude the VLAN 1 to trunk. Thanks you.

  0  
  0  
#4
Options

Information

Helpful: 0

Views: 150

Replies: 2

Tags

VLAN & Multi-Networks
VLAN
Related Articles
omada vpn client only for 1 vlan
923 0
Vlan Issue
546 0
VLAN ID
535 0
Routing LAN to default WAN
646 0
Specific VLAN Blocking Intra- and Inter-VLAN pings (but otherwise everything seems to function)
452 0
Parental control to vlan
441 0
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.