Draytek router HTTPS management port

loltim

loltim

loltim

Soldato
Joined
21 Oct 2002
Posts
14,595
Location
Wellington, NZ
I can't seem to log in to any Draytek router using HTTPS. I have tried IE/Chrome and Firefox. It appears to be down to SSLv3 being disabled in the browser. Have noticed the issue on a 2820 and a newer 2850.

Is there a way round this? Currently accessing the routers on a custom HTTP port. Presumably it would work if I force enabled SSLv3 but obviously that's something I'm not keen on doing.

Thanks.
 
Yeah not keen on allowing SSLv3. Was interested in finding another way.

I guess it's up to Draytek to use TLS in future firmware releases?
 
Yeah just updated the 2850 and HTTPS is working fine now.

I guess now is a good time to retire the 2820 now support has ended.

Thanks.
 
Since accessing it over HTTPS is going to be a pain / impossible as browsers get updated then is it an option to access it via HTTP but over a VPN only? Or just lock the HTTP web UI down to a specific IP address.

If it's a customer system then I'd look to sell a replacement that is supported.
 
Caged said:
Since accessing it over HTTPS is going to be a pain / impossible as browsers get updated then is it an option to access it via HTTP but over a VPN only? Or just lock the HTTP web UI down to a specific IP address.

If it's a customer system then I'd look to sell a replacement that is supported.
Click to expand...

Access list was something I tried to force but the client wanted access from more than three IP's, which I believe is the limit on a 2820.

I guess the bottom line is to not use a Draytek in an enterprise environment:p

Interestingly the 2820 has the latest firmware from January this year installed. I wonder why Draytek didn't fix it in this build.
 
Not necessarily, the bottom line is to use supported equipment in an enterprise environment, which means you need to replace stuff that might not be broken simply due to the vendor not providing support and more and so security issues go unaddressed.

The 2820 first appeared in 2008 so I don't think anyone should be disappointed at having to replace it now. You will struggle to find a vendor focused on the SMB space that is still releasing firmware for 7+ year old network gear and doesn't require any support contract in place.
 
Last edited:
Draytek are aimed at the enterprise and business market. They are quite brilliant, this is probably just the 2820 starting to show its age.

As caged said, if it's enterprise and depended on then it should be current and supported.

**wonder if wrt is available for 2820s?
 
this is a cypher issue, we use the same routers in a few satellite offices, really easy just go and get the latest firmware will fix the issues
 
The latest firmware doesn't fix it on the 2820 as mentioned above. It's worth an email to draytek Monday morning though, thanks.
 
"Dear client, your router is no longer supported and can't be upgraded to protect against the latest exploits. A replacement is £xxx."

No need to make this difficult :) I'll be impressed if DrayTek have plans to release new firmware though.
 
Caged said:
"Dear client, your router is no longer supported and can't be upgraded to protect against the latest exploits. A replacement is £xxx."

No need to make this difficult :) I'll be impressed if DrayTek have plans to release new firmware though.
Click to expand...

I see your point but they released a firmware this year so i'm not convinced it's unsupported just yet.
 
I know this is an old thread, but I just wanted to say that the Dec 2016 firmware 3.3.7.9 for the 2820 does address this issue. Even though it is an old router, they are still updating the firmware for it. :-)

I hope that helps others who find this thread.
 
You must log in or register to reply here.
Back
Top Bottom