astral said:
-------------------
I tried to scan another router (another model of same mfg) with disabled
remote access option, the same thing, it returns routers full name and
version.
Both routers have SIP service at 5060 tcp port - perhaps this is the
reason? Nmap is caable to determine this. How to solve this?
Unless its a SIP issue (I know what SIP is, I've just never used it), its a
poor router which advertises what it is - hackers dream.
Any chance you could let me know your IP address so I can do a scan from
here? (email me off-line if you don't want it in a public forum - you should
be able to get an email address by following the link in my signature, just
be aware that I only pick up emails to that public facing address in the
evenings.) I'm wondering whether nmap might give an indication of how it is
getting the manufacturer's name and whether that in turn might shed any
light on it. Alternatively an IP address (or DNS name) where I can scan the
router with remote access disabled might be even better.