What is a decent DOCSIS3.0 modem with WiFi?

Discussion in 'Wireless Internet' started by D. F. Manno, Jul 12, 2015.

  1. D. F. Manno

    tlvp Guest

    Happened here once, too, though with squirrels. A service tech sent out to
    investigate our problems found there was no DHCP-assigned IP address for
    our device, went up the pole and found a nice vampire-tap-like puncture in
    the coax right near a connector end (squirrel tooth, he conjectured),
    lopped that out and spliced in a short replacement section and, upon
    examination of the puncture in what he'd cut away, found it had neatly
    severed the inner solid copper conductor, probably allowing some sort of HF
    capacitative coupling to get some signal to the set-top equipment, but not
    at a level good enough for DHCP negotiations.

    Fun, eh? Cheers, -- tlvp
     
    tlvp, Jul 13, 2015
    #41
    1. Advertisements

  2. I have a customer with Ooma and a Brother MFC-7360N:
    <http://www.staples.com/Brother-reg-Refurbished-MFC-7360N-Laser-All-in-One-Printer/product_424336>
    Incoming faxes work nicely and reliably. Outgoing is a crap shoot.
    Sometimes it works, sometimes not.

    However, there's a complication. The company has 3 Ooma lines. Two
    in the base unit and the fax using a plug into an Ooma Lynx adapter.
    Ooma recommended some setting in the printer which helped, but did not
    solve the problem. Yes, the "fax mode" is set:
    <http://support.ooma.com/home/setting-up-your-ooma-linx/>
    I was able to temporarily move the line to the main unit which seemed
    to solve the problem, but was unable to decode the Ooma programming to
    make the change permanent. At this time, I don't know if it's the
    Ooma Lynx, or something in the fax machine. I tried a different fax
    machine, which made things worse. Therefore, I suspect it's an Ooma
    Lynx problem.

    I have 3 other customers with Ooma and all-in-one printer/fax/scan
    machines that are not having any problems with faxing. However, there
    have been several VoIP phone customers that I've steered in the
    direction of various eFax type services as an alternative to paying
    for a phone line or that were having reliability problems.
     
    Jeff Liebermann, Jul 13, 2015
    #42
    1. Advertisements

  3. D. F. Manno

    Alan Browne Guest

    Of course there are.
     
    Alan Browne, Jul 13, 2015
    #43
  4. D. F. Manno

    D. F. Manno Guest

    That's interesting. But I think it's a FEDERAL tax.
    Is there anyone here in those taxless states that has an Ooma?
    Do you pay monthly tax just for owning the thing (like you do with a car
    or house)?
     
    D. F. Manno, Jul 13, 2015
    #44
  5. D. F. Manno

    D. F. Manno Guest

    I think it's not "really" AT&T anymore. Someone else, I think, simply
    bought the name.
     
    D. F. Manno, Jul 13, 2015
    #45
  6. D. F. Manno

    D. F. Manno Guest

    I have never tried faxing, but the Ooma has a standard female telephone
    jack, so, you just plug in "normal" telephony equipment.

    At least that's what I do.
     
    D. F. Manno, Jul 13, 2015
    #46
  7. D. F. Manno

    D. F. Manno Guest

    Yes, the router will be dual band, and as much power as I can get but
    they don't usually even show the power. It will be n band also.

    Is there anything else of import (I'm not worried about 'easy setup').

    1. Dual band (5Ghz & 2.4Ghz, with guest)
    2. At least "n".

    Anything else nowadays (I haven't bought a router since 'n' came out).
     
    D. F. Manno, Jul 13, 2015
    #47
  8. The more acronyms, the better (and the more expensive). You can get
    the real xmit power by finding the FCC ID number, and looking up the
    test results on the FCC ID web pile:
    <http://transition.fcc.gov/oet/ea/fccid/>
    You can also get some good reviews and details at:
    3. Gigabit ethernet ports.
    4. 802.11ac (optional).
    5. QoS router settings for VoIP.

    For my own abuse, I like to have:
    6. DD-WRT and other 3rd party firmware availability.
    7. Wireless client isolation.
    8. SNMP management.
    9. Wi-Fi Alliance certification.
    10. WPA2-enterprise for running an external RADIUS server.
    These are certainly overkill but might be useful.
    Well, the only things that have appeared since 802.11n (about 5 years)
    are designer packaging, strange looking antenna farms, firmware bugs,
    20/40 MHz bandwidth, and 802.11ac.
     
    Jeff Liebermann, Jul 13, 2015
    #48
  9. D. F. Manno

    The Real Bev Guest

    Nope, never had/tried fax with anything. Aren't there software
    fax-facsimiles?
     
    The Real Bev, Jul 13, 2015
    #49
  10. D. F. Manno

    D. F. Manno Guest

    D. F. Manno, Jul 13, 2015
    #50
  11. D. F. Manno

    D. F. Manno Guest

    I hadn't realized that Ethernet got that fast in a home router.
    My boy has probably never hooked his computer to a "wire", but, that's a
    nice thing to have speed in Ethernet when it's there.

    Thanks for that hint!
     
    D. F. Manno, Jul 13, 2015
    #51
  12. Think about it. When the wireless is advertised as "up to 600
    Mbits/sec), it would be a good idea to have the ethernet interface go
    at a similar rate. A 10/100baseT ethernet is only really good up to
    about 70 Mbits/sec. Once wireless speeds exceeded that, gigabit
    ethernet became a necessity. Whether you'll actually see such speeds
    is dubious, but the big numbers do look good on the advertising
    literature.
     
    Jeff Liebermann, Jul 13, 2015
    #52
  13. D. F. Manno

    D. F. Manno Guest

    Yes, but, other than at work, I haven't seen a "wire" from a router to a
    laptop in years! :)

    Of course, the Ooma is wired, as is the printer, but, not the laptops.
     
    D. F. Manno, Jul 13, 2015
    #53
  14. D. F. Manno

    D. F. Manno Guest

    While I have updated the firmware on my routers over the years, it's not
    something I consciously think about day to day. I doubt the kids are
    doing anything so worrisome that they need to be extra cautious, so, no,
    to answer your question, I'm not much worried about the router updates.

    Apple works a lot off of FUD, by making their customers *feel* secure,
    which is a great thing, and it's a service to their customers, but, in
    the end, nothing is even close to secure from a state-sponsored adversary.

    Plus, I'm wary of backdoors purposefully left open by the manufacturers
    of all routers.
     
    D. F. Manno, Jul 13, 2015
    #54
  15. D. F. Manno

    Guest Guest

    anything accessible from the outside is vulnerable.

    note that apple isn't listed:
    apple does not work off fud.

    while nothing is impossible, it's a *lot* harder to compromise an apple
    router than a generic off the shelf router, particularly when the user
    doesn't update anything, which they don't normally do because they more
    than likely have no idea there even is an update for their router.

    many people don't know what the admin password for their router is
    because it was set up by the cable/dsl installer, which means they
    can't update anything even if they wanted to.
    then you ought to not buy a generic router.
     
    Guest, Jul 13, 2015
    #55
  16. D. F. Manno

    D. F. Manno Guest

    It's perfect.
    1. Costco for the modem.
    2. The best router I can find (with high speed ethernet & n/ab/), 5/2.4MHz
    3. I'll try to talk Comcast out of the $50 service call also (as advised
    here).
     
    D. F. Manno, Jul 13, 2015
    #56
  17. D. F. Manno

    D. F. Manno Guest

    I don't know how an apple router is any more or less secure than any
    other router.

    True, I don't know anything about how they "make" routers.

    I just set them up at home so my experience is limited to about four
    routers in my entire life, but the setup nowadays is pretty simple.

    Change admin password and login name (if possible)
    WPA2/PSK on all 4 frequencies (guest + main 2.4GHz & 5GHz)
    Broadcast SSID (it's actually counterproductive not to)
    SSID doesn't name me or my family or pets or address, etc.
    SSID isn't on a typical million-SSID-long butterfly hash lookup
    I generally leave it at the firewall defaults (don't know better)
    Static IP address (I have no choice)
    Web login I change the port from 80 to something else (or disable)
    SSH login I change the port from 443 (IIRC) to something else
    Disable remote login
    Allow factory reset switch to work (I have used it a few times)

    That's all I can remember from memory.
     
    D. F. Manno, Jul 13, 2015
    #57
  18. Wireless is a great idea, until everyone else also does it. I haven't
    done the Netstumbler thing for about a year, but the last time I
    checked, my 12 mile mostly residential commute shows about 200+
    wireless routers/access points. In about 2003, it was maybe 30.
    The surest sign of success is pollution.
    In offices full of desktops and security consultants, wired ethernet
    is a requirement. It's also far more reliable than wireless. At home
    it is mostly wireless. I can see using wireless for laptops,
    Chromebooks, tablets, and smartphones. Maybe printers. However, I
    get rather irritated at customers complaining that the wi-fi bands are
    crowded, when they have their Roku or Apple TV box sitting 1 meter
    away from their router, but are using wi-fi for the streaming video.
    Same with customers that buy high power wireless routers, so they can
    burn their way through several walls and floors, when a 2nd access
    point at the other side of the house will do a much better job. Lots
    of other ways to do it wrong.

    Then there's backing up the laptop over the network. I use Acronis
    True Image 2014/2015 over the LAN to an NAS box.
    <http://www.acronis.com>
    It does a block by block image backup and therefore gets literally
    everything. It's also quite fast, but requires gigabit ethernet to
    get any kind of real speed over the network. (USB 3.0 for local
    connections is also quite fast). On a commodity dual core PC, I get
    at least 2 Gbytes/minute. However, there's always someone who wants
    to run their backups over the wi-fi, which takes somewhat less than
    forever, and sometimes brings everyone else's speed to a crawl. When
    both wi-fi and ethernet are connected, Windoze and OS/X are suppose to
    use the "cheapest" route, which usually means the fastest. That
    actually works about 9 out of 10 times, but to be sure, I ask users to
    turn off their wi-fi client radio before running a backup.

    Oh yeah, add some intrusion detection to keep the neighbors and nosey
    hackers like me out of your network:
    <http://home.comcast.net/~jay.deboer/airsnare/>
     
    Jeff Liebermann, Jul 13, 2015
    #58
  19. D. F. Manno

    Guest Guest

    because apple writes their own firmware which requires apple's own
    configuration app (available on multiple platforms) rather than use
    generic firmware that is branded with a logo and uses a web browser to
    configure.

    if you look at different brands of consumer routers, you'll notice that
    the firmware is often rather similar.

    that raises the bar by a *lot*.
    that depends on the router.

    apparently you've never had the thrill of a verizon fios actiontec
    router. configuring that is amazingly convoluted, and for no good
    reason (verizon intentionally making it hard is not a 'good reason').
    both a good idea, although it's rare that each frequency has its own
    password.
    nope.

    it won't stop a dedicated hacker who is intent on gaining access (and
    if that's the case you have bigger problems), however, it will stop
    random users who are looking for free wifi. they probably won't even
    know there's a hidden network there.

    since there's no downside to hiding it, you might as well do it.
    it's wise not to put identifying information in the ssid, but why would
    being on a list matter?
    sometimes that's ok and sometimes not.

    i disable ping replies, which is usually enabled. offhand, i don't know
    what else i change.
    that doesn't matter. even if you had dhcp, it doesn't change that often
    anymore, even across a power outage (unless it's fairly widespread and
    for a while).
    always disable remote login, but why do you need ssh access?
    i've never seen a setting to enable or disable a hardware reset.
    ok
     
    Guest, Jul 13, 2015
    #59
  20. D. F. Manno

    D. F. Manno Guest

    Ah, but there *is* a (rather real) downside, at least on Windows laptops.
    I do NOT know if that downside applies to iOS, Android, or Mac though.

    On Windows laptops, if you've had to *tell* the OS what the name of
    the SSID is (which you have to do if it's not broadcasting), then
    Windows will *always* first search for that SSID forever
    (unless you reset it) at every connection.
    http://www.howtogeek.com/howto/2865...s-ssid-really-more-secure/?PageSpeed=noscript

    SITUATION 1:
    So, for example, if your home router SSID is "John Doe", then
    *everywhere* you go, will *first* see your laptop scan for
    "John Doe", and only when that fails, will it try to connect
    to "Starbucks" or to "McDonalds" or "Library".

    SITUATION 2:
    Of course, you wouldn't put *identifying* information in your
    home SSID, so, more than likely you'll use something like NETGEAR
    as your home router name, but, if you do *that*, and use any of a
    *million* common router SSIDs, you're in the butterfly tables
    already hashed!

    SITUATION 3:
    Given what is said above, your only real choice is a *unique* but
    non-identifying SSID, right? Nope. If you give it a unique SSID,
    such as "spam123nospam", then *everywhere* you go can target you
    (because they always *see* what you connect to at home first.

    Of course, this is only if the tin-foil hat is on tightly, but,
    you should at the very least be *aware* of this issue.
     
    D. F. Manno, Jul 14, 2015
    #60
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.