Removing label from running service

[astral]

Router with VoIP, connected to cable modem, one port is open for SIP
service. ISP dont allow router. When do remote scan IP address with Nmap, it
show router hardware name and version. Is there way to remove the router
label from service running on open sip port?

 

[Brian Cryer]

Router with VoIP, connected to cable modem, one port is open for SIP
service. ISP dont allow router. When do remote scan IP address with Nmap,
it show router hardware name and version. Is there way to remove the
router label from service running on open sip port?

If your ISP doesn't allow you to use a router then its time to change your
ISP.

I suspect that your router supports remote-access. Otherwise I don't think
there should be any way to determine what type of router you have. If it
does support remote-access then try disabling that feature.

 

[Brian Cryer]

Yes, but this doesn't mean that it should be visible externally to the
Internet.

This name broadcasts when network scanner discover router in WAN. Yes,
router support remote access configuration via HTTPS.

This doesn't seem right. I did a scan against mine and it doesn't broadcast
anything. Try disabling the remote access configuration - only allow
configuration from inside the LAN.

 

[Brian Cryer]

-------------------

I tried to scan another router (another model of same mfg) with disabled
remote access option, the same thing, it returns routers full name and
version.
Both routers have SIP service at 5060 tcp port - perhaps this is the
reason? Nmap is caable to determine this. How to solve this?

Unless its a SIP issue (I know what SIP is, I've just never used it), its a
poor router which advertises what it is - hackers dream.

Any chance you could let me know your IP address so I can do a scan from
here? (email me off-line if you don't want it in a public forum - you should
be able to get an email address by following the link in my signature, just
be aware that I only pick up emails to that public facing address in the
evenings.) I'm wondering whether nmap might give an indication of how it is
getting the manufacturer's name and whether that in turn might shed any
light on it. Alternatively an IP address (or DNS name) where I can scan the
router with remote access disabled might be even better.

 

[astral]

Unless its a SIP issue (I know what SIP is, I've just never used it), its
a poor router which advertises what it is - hackers dream.

Any chance you could let me know your IP address so I can do a scan from
here? (email me off-line if you don't want it in a public forum - you
should be able to get an email address by following the link in my
signature, just be aware that I only pick up emails to that public facing
address in the evenings.) I'm wondering whether nmap might give an
indication of how it is getting the manufacturer's name and whether that
in turn might shed any light on it. Alternatively an IP address (or DNS
name) where I can scan the router with remote access disabled might be
even better.

-------------

I've contacted modem manufacturer, they checked an issue and said that due
to RFC standards it is not possible to hide this kind of information.

Regards,
astral