gsulliv's profile

New Poster

 • 

2 Messages

Sun, Dec 20, 2020 6:00 PM

Xfinity gateway management portal at 10.0.0.1 provides a certificate only valid for “myrouter.io”

As it says in the topic name. After a network hiccup prompted me to check on my gateway settings, I found that attempting to access the management portal at 10.0.0.1 caused a security knockback in Firefox because the site was trying to use a certificate for “myrouter.io”. Attempting to connect over insecure http autoforwarded to https and the same error. The security knockback was not present when I accessed the page in Chrome.

I cannot find any information about this domain being associated with comcast online, save a reddit post from last month by someone with a similar issue. Is this legitimate, or should I consider my device compromised?

Responses

EG

Expert

 • 

87.1K Messages

6 m ago

Ignore it. It's on your own LAN. HTTPs is not used, nor does it need to be. The Firefox browser is being a hypochondriac.

I am not a Comcast Employee.
I am a Customer Expert volunteering my time to help other customers here in the Forums.
We ask that you post publicly so people with similar questions may benefit from the conversation.
Was your question answered? Mark the post as Best Answer!tick

New Poster

 • 

2 Messages

6 m ago

I understand that 10.0.0.1 is local. what i’m trying to understand is why it’s serving an apparently valid OV certificate associated with Comcast for a domain that doesn’t seem to exist in the wild, doesn’t have a local dns entry pointing to it like you’d expect with an intranet alias, and doesn’t bear mentioning in any readily searchable documentation for either comcast or the hardware.

New to the Community?

Start Here