Draytek router HTTPS management port

[loltim]

I can't seem to log in to any Draytek router using HTTPS. I have tried IE/Chrome and Firefox. It appears to be down to SSLv3 being disabled in the browser. Have noticed the issue on a 2820 and a newer 2850.

Is there a way round this? Currently accessing the routers on a custom HTTP port. Presumably it would work if I force enabled SSLv3 but obviously that's something I'm not keen on doing.

Thanks.

 

[loltim]

Yeah not keen on allowing SSLv3. Was interested in finding another way.

I guess it's up to Draytek to use TLS in future firmware releases?

 

[loltim]

Yeah just updated the 2850 and HTTPS is working fine now.

I guess now is a good time to retire the 2820 now support has ended.

Thanks.

 

[loltim]

Since accessing it over HTTPS is going to be a pain / impossible as browsers get updated then is it an option to access it via HTTP but over a VPN only? Or just lock the HTTP web UI down to a specific IP address.

If it's a customer system then I'd look to sell a replacement that is supported.

Access list was something I tried to force but the client wanted access from more than three IP's, which I believe is the limit on a 2820.

I guess the bottom line is to not use a Draytek in an enterprise environment

Interestingly the 2820 has the latest firmware from January this year installed. I wonder why Draytek didn't fix it in this build.

 

[loltim]

The latest firmware doesn't fix it on the 2820 as mentioned above. It's worth an email to draytek Monday morning though, thanks.

 

[loltim]

"Dear client, your router is no longer supported and can't be upgraded to protect against the latest exploits. A replacement is £xxx."

No need to make this difficult I'll be impressed if DrayTek have plans to release new firmware though.

I see your point but they released a firmware this year so i'm not convinced it's unsupported just yet.

 

[loltim]

You have changed the SSL VPN port haven't you?

No. I'm not using VPN?