Question: network security map, 282 users in my house? (NAV 2009)

I have a single internet connection coming thru coax as part of my cable tv plan. It's a poor connection at best but that beside the point. No routers, just a single cat 5 cable from the modem to my laptop.

 

 On the Network Security Map for NAV 2009, it lists 282 devices currently on my network, including my own. All of them have unique IP's within the range of my ISP and all unique MAC addy's. Adapter manufacturer is the only thing that sometimes shows a value, usually its unknown. Device name always New and category always Generic Device.

 

Is this some flaw in my Cable/ISP's system that's allowing NAV 2009 to read all the other connections on my switch? I mean... I've got their IP's and MAC and online status right there... which would be pretty cool for someone with ill-intent I guess.

 

I trust NAV 2009 to keep me safe so this is more of a general query and not a troubleshooting issue.

Interesting -- have you asked your cable supplier if this is normal?

 

I know from experience that my cble techies can do it in the opposite direction -- check the network down to me -- since on one occasion I was told "Ah yes there's a modem up the road from you that is faulty and serving 9 of your neighbors" (2 of whom had complained that their TV was not working).

 

They had a man working on it when I went out shortly afterwards!

 

Incidentally they told me that if I had a TV/Internet fault to check neighbors and get them to call in if they had the same problem since if more than 4 people called in from a neighborhood it got priority treatment!

lightertack,

 

This is one of the concerns that many people have with cable connections, everyone in your neighborhood shares the same network segment and can see each other. Usually it's less than 282 others but your ISP could be configured such that you can see more.


reese_anschultz wrote:

 

This is one of the concerns that many people have with cable connections, everyone in your neighborhood shares the same network segment and can see each other.[ ... ]


 

 

Which would seem to make installing a hardware firewall/router as essential, even if not adding other PCs to the household network?


huwyngr wrote:

 

Which would seem to make installing a hardware firewall/router as essential, even if not adding other PCs to the household network?


"Essential" might be too strong of a word. If a cable modem user has Norton Internet Security installed they are protected. Adding hardware protection increases the lines of defense.

I had not realized that the software firewall (I presume you mean that) in NIS would stop other users on a network – even if Printer and File Sharing was on? – from accessing my computer if they also could see it in the same way.

I guess I should have added that a cable modem user needs to be careful about how they set up thier Trusted environment. NIS will stop Printer and File Sharing from any computer if it is configured correctly. Also, just because a NIS protected machine can see, say, 282 other machines doesn’t mean that those machines can see the NIS machine. It all depends upon the configuration.

Sounds as if we need some specific guidance .... ?

 

<< NIS will stop Printer and File Sharing from any computer if it is configured correctly. >>

 

Woooh! There are a substantial number of messages I've seen where people are saying that two computers are talking to each other and printers are working until they installed NIS2009 -- and IIRC some that say that reverting to NIS2008 and they are OK.

 

Can you explain -- perhaps in a general message? -- more about this and how one configures "correctly" to allow LAN sharing but prevent WAN access?

 

Likewise on << Also, just because a NIS protected machine can see, say, 282 other machines doesn't mean that those machines can see the NIS machine. It all depends upon the configuration. >> Just what does one have to address in the configuration?

 

TIA ...... not necessarily tonight <g>

Reese, thanks a lot for the descriptive explanation. I hadn't known that. Now... I'm worried.

 

 I dont have NIS, just NAV 2009.  Last time I tried to get NIS, there was some export restriction at my location back then. I have the Windows firewall enabled with extremely few exceptions and file/printer sharing is off.  I hope thats enough. Honestly, this is the first time I've been able to see the MAC addresses of everyone on a network without having access to the router.

 

hmmm..... perhaps i do have access to the router around here somewhere... heheh.  (bad thoughts... go away)


lightertack wrote:

[ ... ]

 

 I dont have NIS, just NAV 2009.  Last time I tried to get NIS, there was some export restriction at my location back then.

 

[ ... ]


Care to say where you are located so we can check on this. Some restrictions that related to encryptation have been relaxed over the years I understand.