Hi - it looks to me like the draytek routers would still suffer a from 'DNS remote rebind attack' (www.youtube.com/watch?v=0duYxPIx8gU)
Has anybody looked at this? - Is there a recommended approach for Vigor routers?

I assume a firewall rule would be best - but I'm not 100% sure how to construct it

s

Simple enough to deal with this rather old issue.

Use a good password on your router, they can't get in, the hackers look for routers that have the default admin/admin login.

Do not use Javascript and if you must have Java running do not allow it to auto run, use NO Script .

Use Open Dns , they provide security systems and prevent rebinding. Other public DNS providers also protect you.

Most decent UK ISP's set their DNS systems to prevent rebinding attacks.

You can get DNS checks and download Dns benchmark at GRC.com


https://www.grc.com/dns/dns.htm

https://www.grc.com/dns/operation.htm

https://www.grc.com/dns/benchmark.htm