I have Charter Business 60/4 HSI. My cable modem is the Ubee DDW365. Behind the cable modem is an Ubiquiti Edgerouter Lite. The cable modem is in bridge mode only, no wifi, no routing, no packet inspection (AFAIK). Single static ip address.
After making changes to my firewall settings on the router I usually run nmap on a remote server against my static ip just to be sure I didn't screw the settings up. On this occasion, I ran GRC Shields Up. Convenience versus efficacy I suppose, but the interesting thing here is that after starting the scan, the modem power cycled. I thought, hey that's a crazy coincidence and restarted the scan after it came back up and sure enough it power cycled again. I then tried using nmap and the modem stayed up.
I contacted Charter support and they took down my report and said they'd contact the day shift but never heard of such a thing. Neither had I! I called the next day and spoke with the tech who after several on holds to speak with others said they didn't know anything or any reason why, nor had they heard of such a thing. Tech logged in and verified that things were set appropriately. To complicate this I have absolutely no interface into the device, they run everything about the cable modem. In the end, they said that they do have provision to cycle a modem if it is being actively targeted and that was part of the network function. I, thinking of windows it's a feature not a bug, got a laugh out of this.
I've since run nmap several more times against my router and am satisfied that my network is secure but I am left troubled by the fact that anyone on the internet if they could recreate the process that GRC Shields Up uses could target this modem, perhaps other modems as well.
Thoughts?
↧