Why am I seeing 2 dns servers 75.75.75.75 and 75.75.76.76 then I see 2001:558:feed:1 and 2001:558:feed:2 then it has a long set of characters? We started using Xfinity wifi today, and this is the first time to connect to a wifi as well. First time iphone users.
iPhone 12
DNSfeeds wrote:
I assumed that there should only be one. I am trying to make sure someone else is not controlling my internet or sighned into my wifi.
WPA2 AES minimally, and either WPA2/WPA3 transitional or WPA3 if your gear supports it, 15 to 20 character unique password, and the router secured and patched to current.
Some of the lower-end and cheaper networking gear has a short shelf life, and with few or no patches for vulnerabilities later found. Mid- and upper-range gear can last a little longer, but that too still gets replaced.
ISP-provided networking gear tends to be focused on reducing the cost of device acquisition, reducing the cost of installing and managing the device, and everything else can be a distant third or fifth or nope priority.
My last phone was cloned as the research tells me,
That usually takes physical access, or a compromised carrier. I’ll presume you have set a SIM PIN/PUK.
my computer was shadowrooted,
“Shadowrooted” is not a term I am immediately familiar with. Rooting, yes. All I see for “shadow root” is a spell from World of Warcraft, or involving hair coloring. How and what happened with your computer would be a discussion.
and my wifi was attacked around 40k times according to the cyber company i hired.
That’s pretty much Thursday, on the Internet. Every IPv4 gets probed. Continuously. This activity is sometimes called “the background hum of the internet”. These probes should be entirely blocked from arriving on your local network by any reasonable router configuration, too. Sure, it might be fodder for creating what are known as “pew-pew maps”, but not much else.
I do not know if these settings are standard settings or if it is all happening again. new router from xfinity installed today.
You can confirm DNS addresses with your ISP. That would often be your best path for these network setup questions, too. “Hi, I’m setting up DNS, can you provide the IPv4 and IPv6 DNS server addresses?” or some such question can work well for that.
75.75.75.75, 75.75.76.76, 2001:558:feed:1, and 2001:558:feed:2 are widely listed as Comcast DNS servers.
I have one xbox, three phones, and an xfinity flex connected.
That would typically be to either a local switch, or strictly via Wi-Fi, or a combination.
I do not want my ip camera system connected though i see signs of it already being hacked as well. password has stopped working, cameras will not show a clear picture when someone walks by them, disconnects randomly from network..... Im not sure of how this all works but it doesnt look right from what ive seen and read so far.
That doesn’t initially seem to be a security problem, nor seemingly any evidence of a hack. Some cameras do have utter rubbish security, though. Check for details of known exploits and issues for the particular camera device, for any available firmware updates, and related. Wi-Fi networks are also routinely subject to Wi-Fi interference, to signal degradation, and mistaken or problematic settings.
DNSfeeds wrote:
I assumed that there should only be one. I am trying to make sure someone else is not controlling my internet or sighned into my wifi.
WPA2 AES minimally, and either WPA2/WPA3 transitional or WPA3 if your gear supports it, 15 to 20 character unique password, and the router secured and patched to current.
Some of the lower-end and cheaper networking gear has a short shelf life, and with few or no patches for vulnerabilities later found. Mid- and upper-range gear can last a little longer, but that too still gets replaced.
ISP-provided networking gear tends to be focused on reducing the cost of device acquisition, reducing the cost of installing and managing the device, and everything else can be a distant third or fifth or nope priority.
My last phone was cloned as the research tells me,
That usually takes physical access, or a compromised carrier. I’ll presume you have set a SIM PIN/PUK.
my computer was shadowrooted,
“Shadowrooted” is not a term I am immediately familiar with. Rooting, yes. All I see for “shadow root” is a spell from World of Warcraft, or involving hair coloring. How and what happened with your computer would be a discussion.
and my wifi was attacked around 40k times according to the cyber company i hired.
That’s pretty much Thursday, on the Internet. Every IPv4 gets probed. Continuously. This activity is sometimes called “the background hum of the internet”. These probes should be entirely blocked from arriving on your local network by any reasonable router configuration, too. Sure, it might be fodder for creating what are known as “pew-pew maps”, but not much else.
I do not know if these settings are standard settings or if it is all happening again. new router from xfinity installed today.
You can confirm DNS addresses with your ISP. That would often be your best path for these network setup questions, too. “Hi, I’m setting up DNS, can you provide the IPv4 and IPv6 DNS server addresses?” or some such question can work well for that.
75.75.75.75, 75.75.76.76, 2001:558:feed:1, and 2001:558:feed:2 are widely listed as Comcast DNS servers.
I have one xbox, three phones, and an xfinity flex connected.
That would typically be to either a local switch, or strictly via Wi-Fi, or a combination.
I do not want my ip camera system connected though i see signs of it already being hacked as well. password has stopped working, cameras will not show a clear picture when someone walks by them, disconnects randomly from network..... Im not sure of how this all works but it doesnt look right from what ive seen and read so far.
That doesn’t initially seem to be a security problem, nor seemingly any evidence of a hack. Some cameras do have utter rubbish security, though. Check for details of known exploits and issues for the particular camera device, for any available firmware updates, and related. Wi-Fi networks are also routinely subject to Wi-Fi interference, to signal degradation, and mistaken or problematic settings.
These are all DNS servers -- what they do is to map URLs, e.g., apple.com, to the actual Internet address of their webserver(s). They are safe.
However, if you feel uncomfortable with these numbers, you can go check out NextDNS.io or ControlD.com and get a safer DNS servers.
These are COMCAST IP addresses - the first two are IPv4 addresses and the second set are IPv6 addresses. They are assigned when your iPhone connects to the WiFI and gets its IP addresses (v4 and v6).
That’s a meaningless question. addresses are not secure or unsecure. They just “are”. Your IP address is the way your device is identified by anything that sends data to your phone. So is your house number secure? That is an equivalent question.
Where are you seeing your IP addresses (ipv4 and ipv6)? If it is on your iPhone those are your device addresses on your local network. Those will be different from your “public” IP addresses, which you can see by visiting What Is My IP Address. No one ever sees your local IP addresses, but if sites can’t see your public IP addresses then they can’t display anything on your device. It would be like receiving mail if you don’t give anyone your house address.
Your DNS server is the address of the network node that translates a URL to an IP address so you can view a website. Any responsible DNS server is “secure”. The one used by your ISP is secure, and also the one used by your cellular carrier is secure.
You can have any number of DNS servers. Do you really have different routers for ipv4 and ipv6 - that is, do you have 2 different physical routers in your home? If not you do not have 2 different routers for ipv4 and ipv6.
Your router provides both IPv4 and IPV6 addresses.
At some point in the future, IPv4 addresses will go away and everything will be IPv6 addresses.
A DNS that is from a company that you can trust (one that will not use your online behavior for profit). I am not connected with those two services I have mentioned, but I do trust them (I can set each not to keep a copy of all URLs that I visit and also BLOCK some that I do not want, like Facebook.com hahaha).
I assumed that there should only be one. I am trying to make sure someone else is not controlling my internet or sighned into my wifi. My last phone was cloned as the research tells me, my computer was shadowrooted, and my wifi was attacked around 40k times according to the cyber company i hired. I do not know if these settings are standard settings or if it is all happening again. new router from xfinity installed today. I have one xbox, three phones, and an xfinity flex connected. I do not want my ip camera system connected though i see signs of it already being hacked as well. password has stopped working, cameras will not show a clear picture when someone walks by them, disconnects randomly from network..... Im not sure of how this all works but it doesnt look right from what ive seen and read so far.
Ive had to read both replies a few times lol. All dolphin speak to me. Thank you guys for taking the time to explain.
I have set up a sim pin now that i am using iphone, and found that I could. I will contact my ISP and ask.
I don't understand the local switch, as far as I know it is strictly wifi.
Yes I am seeing the IPV4 and IPV6 IP addresses on the iphone. IPV4 has only one address, IPV6 I have 3 addresses 24 characters, 37 characters and 40 characters. I am also seeing different routers on them both. IPV4 is 10.0.0.1, IPV6 is 25 characters long. I am also using a VPN if that has anything to do with them.
DNSfeeds wrote:
Yes I am seeing the IPV4 and IPV6 IP addresses on the iphone. IPV4 has only one address, IPV6 I have 3 addresses 24 characters, 37 characters and 40 characters. I am also seeing different routers on them both. IPV4 is 10.0.0.1, IPV6 is 25 characters long. I am also using a VPN if that has anything to do with them.
Add-on commercial VPNs are a mess. At best. Lots of hype around that. Expect to be logged and tracked. claimed not to log, and were later caught logging, when their logs leaked. Expect the added security is marginal at best, past the existing use of secure connections.
Did you know that some VPNs can be configured to be bidirectional? Can be set up to work both ways? You can connect out, and others can connect inward? Fun, that.
I've also seen problem reports around here that could indicate some VPNs were decrypting and accessing secured network traffic.
As for VPNs more generally...
https://www.vice.com/en/article/xgxnwk/you-probably-dont-need-a-vpn
https://www.michalspacek.com/i-dont-use-any-vpn-for-security-or-anonymity
Interestingly, some of the VPN providers seemingly also own some of the VPN review sites, so... interesting times there, too.
And you'll want to learn a little more about IP and networking, as explaining how that works in forum threads is... a whole lot of typing, at best.
The words "hacker", "cyber", and "virus" can be an indication that what you're reading is closer to entertainment, too. There are exceptions to that of course, but a whole lot of what gets posted is closer to fiction or fantasy.
I have realized over the past 3 years or so that there aren't many entities, individuals, or organizations that are completely truthful about their products, services, or objectives. Will be researching network and IP along the way. Lots to learn. Very difficult when you get mixed information from the www. For instance xerxes. I found on my other phone on log out. Tried to research and got three completely different answers. One says ransomeware, another says it was from xfinity and another said it was used to mine bitcoin.
Thank you again sir, I will read the two articles.
Lawrence Finch wrote:
…If you want VPN for privacy about the sites you visit, that’s not a good choice as discussed; instead you should download and use the TOR browser.
With iOS 15.2 for iOS/iPadOS and MacOS Monterey 12.2 and later Apple now has iCloud+ Private Relay, which is not VPN, but provides a safer browsing environment than VPN, and it doesn't spy on you→About iCloud Private Relay - Apple Support
Clarifications: iCloud+ iCloud Private Relay is a two-hop link service akin to Tor, and that will mask the originating IP address from the destination server.
Private Relay does not encrypt traffic.
Neither Private Relay nor first-few-hops VPNs will entirely block gathering data that can identify an accessor. And it’s involving much more than cookies. Learning more about EFF CoverYourTracks/Panopticlick might interest, here.
Tor having more hops is arguably better than Private Relay—absent opponents with ubiquitous network access—but can have and can introduce its own issues. Tor exit nodes are also commonly blocked by various providers. And Tor traffic is “interesting” to others monitoring network activities.
For most of us interested in privacy—outside of those here that can be contending with repressive regimes and other very-well-funded adversaries—iCloud+ Private Relay is probably good enough.
Always SSL/TLS/HTTPS your Tor traffic, your Private Relay traffic, and, well, any and all of your traffic, of course. And don’t load sketchy trusted certs.
First-few-hops VPNs are over-hyped because they’re a great (profitable) way to centralize, collect, log, and scan network traffic, and all that by purportedly and badly solving a problem which largely doesn’t exist any more. And the first-few-hops VPN vendors here can unfortunately appear to be, or can be, sketchy.
If you really do need a first-few-hops VPN client, Streisand and Algo are options for running your own VPN server.
Put differently, know your threats and know your exposures and know your tech. If you don’t know DNS and IP and tunneling and related tech, you’ll need to learn more about that, too.
Thank you. I am not familiar with either. I have seen these phrases but do not know them. The long code below, that belongs as well?
OK....What would be considered a safer DNS? What factors would I consider?
DNSfeeds
