Draytek (again)

mejinks

mejinks

mejinks

Soldato
Joined
28 Oct 2002
Posts
5,033
Location
Hiraeth
Draytek used to make some nice and solid products years ago, but they seem to be victim of another attack yet again following the last spate:

www.ispreview.co.uk

Broadband ISPs Report UK Problems with Vulnerable DrayTek Routers UPDATE4

A number of broadband ISPs from across the United Kingdom (and possibly other countries too), such as ICUK and Andrews & Arnold (AAISP), have this weekend n
www.ispreview.co.uk www.ispreview.co.uk

I work for a msp. We have about 300 customers on various drayteks (Not by our choice) Please pray for me.

Anyone else?
 
Same here, although only around ~10 or so sites are using them (2830/2832/2860). Used to manage more until ICUK came in to install fibre but they also supply the 2766 model, and luckily these ones haven't had any issues. I suspect this thread also came across the same problem: https://forums.overclockers.co.uk/t...city-fibre-wifi-not-a-consideration.19000580/

The ones that did have issues were with Community Fibre's business plan, management wanted us to reuse these old routers (against our advice) since CF charged extra to supply one.

Updating the firmware (2830 unfortunately doesn't have any) and turning off remote access (which is on by default for a lot of the older models for some weird reason) has fixed it for me. The main Draytek site and UK site were down though so I had to grab it from their Taiwan FTP server: https://fw.draytek.com.tw
 
Last edited:
We had issues this morning with certain customers, only seems to be affecting certain models, quick fix is to disable the SSL VPN protocol.
 
mejinks said:
I work for a msp. We have about 300 customers on various drayteks (Not by our choice) Please pray for me.

Anyone else?
Click to expand...
Only 3 of my MSP clients are on Draytek gear.

Oh and my own company.

None has whinged at me yet, so I’m going with the scream test method.
 
Less than 10 affected for me which was nice, seems the newest kit I have out there wasnt affected, just the older 2830n/2862 types, unchecked ssl vpn and away they went. Couple need firmware updates tonight though and have a link to use as the regular draytek.co.uk site was down this morning too.
 
Last edited:
My 2865 seems to be working fine - no drops over the weekend and I have SSL VPN enabled. I do not have remote management access enabled though (seriously why would you?)


Draytek.co.uk displays a Barracuda Networks protection message however:
1742835379269.png
 
Looks like quite a few firmware updates just released (sort it by date if it isn't already)

Resources

www.draytek.com www.draytek.com

The UK website is back up but nothing on there yet
 
Last edited:
You must log in or register to reply here.
Back
Top Bottom