What does it mean when a second device suddenly shows up in the NIS Network Security Map? We didn't add anything to the network. A Whois/address information site says it is a private address from IANA (Internet Assigned Numbers Authority). Anyone know what this means?
random2 wrote:What does it mean when a second device suddenly shows up in the NIS Network Security Map? We didn't add anything to the network. A Whois/address information site says it is a private address from IANA (Internet Assigned Numbers Authority). Anyone know what this means?
Hi random2
It is likely that the second device you are seeing is your own Router's IP address.
mdturner wrote:Hi random2
It is likely that the second device you are seeing is your own Router's IP address.
Hi, thanks for the reply. We don't have a router, we're connected with modem directly to cable.
HI random2
Could you post a screenshot of the Network Security Map?
mdturner wrote:HI random2
Could you post a screenshot of the Network Security Map?
Hmmm...I don't seem to be able to add an attached jpeg of the screenshot (Edit: Is there a different file format I should be using?). I keep getting this message from the forum:
"Please correct the highlighted errors and try again. The file does not have a valid extension for an attachment. txt,log,lue are the valid extensions."
random2 wrote:
Hmmm...I don't seem to be able to add an attached jpeg of the screenshot (Edit: Is there a different file format I should be using?). I keep getting this message from the forum:"Please correct the highlighted errors and try again. The file does not have a valid extension for an attachment. txt,log,lue are the valid extensions."
Hi random2
Use the little icon that looks like a small tree to attach your file. Once it is posted it will take a little while for the moderators to approve it before we will be able to view it.
Okay, posted image above. It says Motorola; our modem is Motorola, but then why wouldn't it list the category as CABLE/DSL MODEM instead of GENERIC DEVICE? I'm a bit of a novice at all this network stuff, but would a modem have a Physical Address and it's own IP Address?
[edit: Fixed posting error.]
random2 wrote:
Okay, posted image above. It says Motorola; our modem is Motorola, but then why wouldn't it list the category as CABLE/DSL MODEM instead of GENERIC DEVICE? I'm a bit of a novice at all this network stuff, but would a modem have a Physical Address and it's own IP Address?
Hi random2
Sometimes Norton is unable to ascertain exactly what a device is and so it defaults to "Generic Device". If you highlight the device and then choose Edit you can change the Name to something such as Motorola and also change the Category type to Cable/DSL Modem.
There is no issue to be concerned about with the device.
Thanks, mdturner. The IP shows up as non-routable which suggests it could be a LAN side IP address for the modem.
Curious that it just now showed up on the Network Security Map but I guess Norton only now detected it.
Hi random2,
A little background and addtional information:
Typically a home router supporting NAT and DHCP assigns what is referred to as a private IP address to each connected computer and the router itself has the only globally unique IP address. In this situation the computer's IP address is never presented to the world wide internet as it is the routers job to route packets to their proper destination. A private IP address can never be presented to the public internet.
Some modems also provide this functionality and I suspect that is what you have in your case. In fact I just done a bit of research on Motorola modems and this appears to be the case at least for some models.
Your computer is probably set for DHCP which means it gets its IP address from a DHCP server on your home network. Your modem is probably providing this service. You can view your IP address by bringing up a CMD prompt and typing ipconfig and hit Return. Look for one called Local Area Connection and then look at the IPv4 address. If it shows a number starting with 192 or 172 then you have a private IP address and your modem will have the globaly unique address.
Any other address would mean that your computer has the globally unique address.
The modem may not be acting as a DHCP server but still be detected by NIS.
Please note, do NOT post your IP address in your reply. I have explained this method so that you can see more details of how your home network is configured.
The network security map is just showing that it can see another device on the home network and it will also show the IP address of the other device.
In short, as mdturner says this is normal.
Best wishes.
Allen
Hi AllenM. Thanks for all the additional information.
DHCP is enabled, as you suggest.
ipconfig does show the IP Address (it's not either of the two starting numbers you mention) but no IPv4 address. I tried ipconfig/all and got a bit more but still nothing showing IPv4.
In any case, I believe the computer has the unique IP number. When visiting a website that tells you what your IP number is it always shows the same static IP number I see in network connections status (or when using cmd ipconfig, it shows same number).
re> I tried ipconfig/all and got a bit more but still nothing showing IPv4.
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . :
NIC
Physical Address. . . . . . . . . :
DHCP Enabled. . . . . . . . . . . :
Autoconfiguration Enabled . . . . :
IPv4 Address. . . . . . . . . . . :
Subnet Mask . . . . . . . . . . . :
Lease Obtained. . . . . . . . . . :
You dont have to worry about it. As the device name showing is Motorola Chs, which is a modem and the router manufacturer. So the device is nothing else than your modem
Hi sfsassz. I have the same thing on my machines. I believe it is in preparation for when the new internet protocol Ipv6 comes into use.
At the moment we are on Ipv4, which is rapidly running out of addresses.
Norton is already set up for IPv6. This will explain the details. Taken from the Norton help page
Automatic Learn IPv6 NAT Traversal Traffic
IPv6 is the next version of the Internet Protocol. Some advantages of IPv6 protocol over the existing IPv4 protocol include larger address space, stateless address auto configuration, mobility, and network layer security.
Many hosts and networks now support the IPv6 protocol version. However, a part of Internet that lags behind in IPv6 availability is the IPv4 Network Address Translation (NAT) devices.NAT devices provide the network address translation service, which is the process of modifying network address information in datagram packet headers. The network address translation technique hides an address space of a data packet in another public address space. This way, any host on a private network can access the Internet using a single public IP address. In the current scenario of transition from IPv4 to IPv6, the NAT devices are infrequently updated or replaced. To address this issue, Microsoft developed a tunneling mechanism called Teredo.
Teredo is an IPv6 transition technology that facilitates IPv6 end-to-end connectivity between any IPv6/IPv4 hosts that are located behind one or multiple IPv4 NAT devices. When Teredo is used, the IPv6 data packets are sent as IPv4-based User Datagram Protocol (UDP) messages between the hosts.
Norton Internet Security provides the Automatic Learn IPv6 NAT Traversal Traffic option to control the network traffic that use Teredo to communicate with your computer.
The Automatic Learn IPv6 NAT Traversal Traffic option is available only when Automatic Program Control is set to Aggressive or Automatic. By default, Automatic Learn IPv6 NAT Traversal Traffic is turned on. In this case, Norton Internet Security allows all IPv6 NAT Traversal traffic.
When you turn off Automatic Learn IPv6 NAT Traversal Traffic, Norton Internet Security blocks IPv6 NAT Traversal traffic. If Automatic Program Control is also disabled, Norton Internet Security displays alerts whenever it detects IPv6 NAT traversal traffic. The alerts prompt you to specify whether you want Norton Internet Security allow or block the traffic.
Some of the Windows 7 and Windows 8 features such as Remote Media Experience and Remote Assistance work only when Automatic Learn IPv6 NAT Traversal Traffic is on.
All firewall alerts that appear when an unrecognized program tries to access the Internet contain the information that indicates whether the network traffic is from Teredo.
Thank you for the info on Norton ipv6 traffic configuration options. My concern is that I don't have a Xerox adapter on my laptop nor on my android phone. Where is it coming from and also by me restricting it on the network map will my laptop be secure from this unknown device ?
Hi, sfsassz. I'm not sure why it has the Xerox adapter listed. Mine does too, but you can set your network devices to Shared or Protected on your network map, so you don't need to restrict them.
It could be something like a printer. Are all of your networked devices accounted for?
Thank you for your suggestion.
The first thing I did was to make the teredo tunneling pseudo interface with the Xerox adapter, Restricted, which my understanding is that in will not be able to access my computer. Correct? I have my wireless and LAN connections set to Protected.
My main concern is Security. Who is on my network using a Xerox interface. Not me.
Im surprised that anyone wouldn't be concerned seeing an unknown interface on their network.
It wasn't there prior to my NSS upgrade.
Any other ideas?
Thank You.
Maybe one of your devices has an network adapter made by Xerox.
If your teathered to your android the wifi adapter is still going to show as a seperate device.
The same reason why laptops and some printers have 2 network adapters, one for LAN and one for WiFi.
In the "network security map" what Norton calls "physical address" is really the devices MAC address.
Check your android and any other devices to see if the MAC address matches one of them.
Dave
Hi,sfsassz. I looked this up, and seemingly it's to do with your Ethernet connection, and that it's a generic adapter first developed by the Xerox Corporation. This is what I found.
Ethernet, computer networking technology used in local area networks(LANs).
Ethernet was created in 1973 by a team at the Xerox Corporation’s Palo Alto Research Center (Xerox PARC) in California.