Firewall settings

Hello PatsFan and welcome,

If you are just running your Comcast Gateway (CG) in DHCP mode always acquiring a 10.1.10.x dynamic IP, then unless you have any Ports forwarded (opened) then external hackers cannot access anything on these 10.1.10.x devices for 2 reasons: a.)   CG Port forwarding not open, b.) your Computer's Operating System and/or Anti-Virus is blocking any attacks. If you are using a staticIP, then you should disable your true static manangement port FW, then go to your Static IP Port Management facility and make sure that "block all ports with the following exceptions". This is the most secure manner for any Static IP device to be locked down, if you will. Now if your have a static IP device application that has a port (i.e. port 999) you need open for private or secret access from the outside, this is where you would add new , then use SecretPort 999 999 both Routable.Static.IP. Address of the actual device.

You can also block known potential culprits such as those in your [Firewall[378] by ip address or MAC address, too. The DOCSIS[679] T3 Timeout looks like a Comcast Cable Modem Termination System (CMTS) random T3 Time Out warnings that is very irrelevant. You will see these whenever there is an outage impacting your internet service.

Hope this helps you out.

btw Go PATS beat SeaChickens for TFB's 4th SB !!! 

I am running in DHCP mode.  The only device I use port forwarding for is a voip adapter.  I've opened ports 5004 - 65000, as instructed to the ip I've assigned to the device.

And yes, GO PATS!