- Apr 1, 2019
- 2,732
Funny enough they have made the faster plans cheaper recently. But faster just means we blow past the data cap sooner
Gryphon - the worlds most powerful AI Router.
- Thread starter Slyguy
- Start date
That's BS from Verizon Fios. If your Fios ONT is connected for Ethernet Cat5 vs Coax you just plug in the router of choice. If not - do a search and it is easy to convert). I have used several different
routers including the Gryphon with NO issue. Fios wants you to use their router especially so that can rent it monthly to you.
You can use a 3rd party router with FIOS. ( They don't tell you so as they want you to rent their component). I have used the Gryphon , several others and currently an Asus. The ONT has to be set up for an ethernet connection if you presently have it set as coax. ( no big deal just google how to). Ditch the Fios wireless router completely and you will have more speed, better security and be able to fine tune router settings.
- Apr 1, 2019
- 2,732
@Slyguy any response from Gryphon on your case? They have not replied to mine in a while, but haven’t closed the case.
Any luck trying a new router?
- May 16, 2018
- 1,377
Actually... this thread has been instructive for me.
I sorta bought the Verizon FIOS blah blah about not being able to use a different router.
As pointed out.... apparently I can.
And I don't pay a monthly fee for the router... so that's not their motivation.
And, I didn't really know much about modems and routers... I was never motivated to learn as I thought I was stuck with the Verizon stuff.
So I've started slowly down the path to make the move. Somewhat slowed by the possibility of taking a new job in Colorado Springs.... so deferring changes till I get to the new place (if I get/take the job).
But this is good. I'm learning about stuff I've never known much about.
All that aside, if I do move, I'll definitely miss Verizon FIOS. The fiber optic speeds, buttloads of HD channels, good service... they are not the typical cable company. It's not surprising that towns, counties, communities... lobby FIOS to start service in their areas.
- Apr 1, 2019
- 2,732
On the bright side you’ll be close enough we can grab a beer...I’m just a few hours south.
- May 16, 2018
- 1,377
Awesome. Look forward to it.
And I'll overlook the comment you once made about my organization...
If I get out there -- we should do it.
- Apr 1, 2019
- 2,732
I’m so flippant I don’t recall that, however I’ll buy to make amends.Awesome. Look forward to it.
And I'll overlook the comment you once made about my organization...
If I get out there -- we should do it.
- May 16, 2018
- 1,377
I have FIOS and just switched out my router. I am using it as internet only, since even though I have a tv package, I rarely watch (and if I do, I use the apps/web). Working mostly smooth, although with the Gig plan I am getting 250 down/650 up through speedtest.net and 650 down/250 up on my iPhone 11 through the app. More testing to be done (have set the dns on my computer and in the app to Cloudflare for both IPv4 and IPv6). Have cleared ip/flushed dns/reset ont
Last edited:
wanted to add some comments and feedback after using the gryphon for 2 weeks, i have used Bitdefender Box 1,2 and Cujo and Norton Core.
I am comparing Gryphon to then, not the Fortinet 100D in my lab and the Sophos XG previous to that. Comparing a UTM to gryphon is unfair as a few comments have been made here...
i bought the gryphon and i needed something to replace the fortinet as trying to troubleshoot my fortinet remotely does work well when the wife is complaining she cant get on the internet or a youtube, hulu anr youtube tv wont play. For this i needed somethi8ng simple that it works or it doesnt and reseting it doesnt cause MAJOR issues.
I have used all of the others noted above(exluding fortinet and sophos xg) and out of all of them bitdefender Box 2 is a leader here.
Let me start of with i have built out all the user profiles and devices are assigned to users and i have all my apple tv's, ps4 and nest, tp-link/samsung devices id'd and assigned to the user our house. I have about 40 different devices on my home network, and i have apair of asus ac 3200's (more on these later) set in AP mode for better coverage, i have my IOT set to the 2.4 ghz in isolation mode.
I have found several phishing urls, not caught by gryphon when firefox and google chrome have told me they are unsafe sites. i clicked thru them on my Ubuntu vm and safe was none the wiser...I did talk with support via email on this and confirm i have "malware detection turned up".
I tested with WICar and gryphon missed a few which is shocking as the world knows about this and should be super easy for them to detect, again i am only looking @ network based detection's not host based. I tested a few more known sites that host malware and it was 50/50 on detection's,
In case any wonders...USE AT YOUR OWN RISK KNOWN LIVE MALWARE
Please do not send me a message that you infected your machine and it is infected...
hxxps://www.malwaredomainlist.com/mdl.php
hxxps://isc.sans.edu/feeds/suspiciousdomains_High.txt
Needless to say i am less than impressed with the security aspect of this router, where it does shine better than others is the application and time blocking of users.
I do agree with everyone here the app monitoring/blocking and internet history logs a great, i have added them to the kids profiles and they work without question once you understand each level.
App experience on the ipad is beta at best, the UI personally sucks and leaves alot to be desired... bonus points for having to admins (see comments above) if the wife needs to kick one of the kids of the internet i do not need a phone call to handle it. The lack of a traffic analyzer on what devices are consuming what bandwidth is incredibly lacking,
Ad Blocker is average, and needs a lot of work unless they want have the ability to use a solution like pi hole ( yes i get the comments on traffic flow and how it analysis what in what order)... see comments a few pages back.
QOS is very lack luster as i can only give 1 device priority, why cant i set both my apple tv's as top priority lots of room for improvement here
The Gryphon app UI leaves alot to be desired and the lack of device types isnt granular at all and miss classified a number of devices or just called most unknown
Separate guest WIFI a huge plus...
at $200 for this device there is alot of room for improvement in detection and design app improvements....Homebound vpn huge bonus for being included in the subscription... ($80-100) a yr is not a big deal but should include an ESET av subscription... look @ bitdefender box, and netgear night hawk armour subscription.
Now the Asus AC 3200 devices with AI protection from Trend Micro in my opinion are far better than this (except for app control) i can setup certain devices to use open dns family and restriction what a devices can access and also by time. i can also integrate with DNS SEC providers per device...
I am still on the fence for returning it as i think the product has serious potential but is lacking a few key features... i would love for someone from Gryphon to reachout and hopefully explain roadmap and timelines for this... Bitdefender Box 2 wasnt a shiny thing when it first came out now i do not worry about it and i use it with my inlaws as i do not have to worry about internet issues with them... yes i added quad 9 dns on top of it to add a second layer...
I am comparing Gryphon to then, not the Fortinet 100D in my lab and the Sophos XG previous to that. Comparing a UTM to gryphon is unfair as a few comments have been made here...
i bought the gryphon and i needed something to replace the fortinet as trying to troubleshoot my fortinet remotely does work well when the wife is complaining she cant get on the internet or a youtube, hulu anr youtube tv wont play. For this i needed somethi8ng simple that it works or it doesnt and reseting it doesnt cause MAJOR issues.
I have used all of the others noted above(exluding fortinet and sophos xg) and out of all of them bitdefender Box 2 is a leader here.
Let me start of with i have built out all the user profiles and devices are assigned to users and i have all my apple tv's, ps4 and nest, tp-link/samsung devices id'd and assigned to the user our house. I have about 40 different devices on my home network, and i have apair of asus ac 3200's (more on these later) set in AP mode for better coverage, i have my IOT set to the 2.4 ghz in isolation mode.
I have found several phishing urls, not caught by gryphon when firefox and google chrome have told me they are unsafe sites. i clicked thru them on my Ubuntu vm and safe was none the wiser...I did talk with support via email on this and confirm i have "malware detection turned up".
I tested with WICar and gryphon missed a few which is shocking as the world knows about this and should be super easy for them to detect, again i am only looking @ network based detection's not host based. I tested a few more known sites that host malware and it was 50/50 on detection's,
In case any wonders...USE AT YOUR OWN RISK KNOWN LIVE MALWARE
Please do not send me a message that you infected your machine and it is infected...
hxxps://www.malwaredomainlist.com/mdl.php
hxxps://isc.sans.edu/feeds/suspiciousdomains_High.txt
Needless to say i am less than impressed with the security aspect of this router, where it does shine better than others is the application and time blocking of users.
I do agree with everyone here the app monitoring/blocking and internet history logs a great, i have added them to the kids profiles and they work without question once you understand each level.
App experience on the ipad is beta at best, the UI personally sucks and leaves alot to be desired... bonus points for having to admins (see comments above) if the wife needs to kick one of the kids of the internet i do not need a phone call to handle it. The lack of a traffic analyzer on what devices are consuming what bandwidth is incredibly lacking,
Ad Blocker is average, and needs a lot of work unless they want have the ability to use a solution like pi hole ( yes i get the comments on traffic flow and how it analysis what in what order)... see comments a few pages back.
QOS is very lack luster as i can only give 1 device priority, why cant i set both my apple tv's as top priority lots of room for improvement here
The Gryphon app UI leaves alot to be desired and the lack of device types isnt granular at all and miss classified a number of devices or just called most unknown
Separate guest WIFI a huge plus...
at $200 for this device there is alot of room for improvement in detection and design app improvements....Homebound vpn huge bonus for being included in the subscription... ($80-100) a yr is not a big deal but should include an ESET av subscription... look @ bitdefender box, and netgear night hawk armour subscription.
Now the Asus AC 3200 devices with AI protection from Trend Micro in my opinion are far better than this (except for app control) i can setup certain devices to use open dns family and restriction what a devices can access and also by time. i can also integrate with DNS SEC providers per device...
I am still on the fence for returning it as i think the product has serious potential but is lacking a few key features... i would love for someone from Gryphon to reachout and hopefully explain roadmap and timelines for this... Bitdefender Box 2 wasnt a shiny thing when it first came out now i do not worry about it and i use it with my inlaws as i do not have to worry about internet issues with them... yes i added quad 9 dns on top of it to add a second layer...
- Apr 1, 2019
- 2,732
For what it’s worth my gryphon blocks all wicar.org tests currently. Admittedly I didn’t try the old Internet Explorer exploit links since no one is going to use those browsers in our house. They used to let wicar links through because someone complained they wanted to test their software based solutions and the malware blocking blocked it. Apparently they’ve gone back and forth multiple times on blocking those tests.
- Aug 4, 2016
- 1,497
Had a Gryphon maybe 6 months, I have several IOT devices - I don't search out malware but in normal use it's picked up bits that Kaspersky/Norton have missed, & open ports etc - I have over 30 devices connected & admittedly it still needs work but probably the best buy I made last year - When renewal time is here unless there are drastic changes for the worse I'll renew the Eset sub - Just my observations.
You make some great points. And in your case, I can understand that Gryphon doesn't meet your needs all the way. My perspective is a bit different because I've worked in the business endpoint security for 5 years in another life. I was quite entrenched with 2nd and 3rd level support with both Bitdefender and ESET.
Regarding protection, The Box 2 is probably the better solution because Bitdefender brings over 2 decades of doing this at a very high level which cannot be eclipsed.
When it comes down to performance, It's not even close as Gryphon has a better hardware and, as you said, the 2 networks is a huge plus.
Really these ''secure routers'' have to fit in a setup. In your case, I do not believe it does from what you're saying. It has to be a downside to whatever solution you pick : performance, detection, management, support...
For me, the most important things were performance and management. In that case, Gryphon plays its role to a T :
- I already use Bitdefender on my device so no Box 2 for me. I don't gain anything by having the same engine on both the perimeter and the endpoint
- I have layers of detection before gryphon and a few after. So detection is covered already.
- And to be able to handle all that, the Gryphon hardware is excellent.
- Management is very simple and straight to the point
Last edited:
@atz7 yes i use bitdefender AV on my endpoints, and added quad 9 dns fwding right now.
on item 3 above I think this is the key to future success, this is why I would love to see what they can accomplish. I do have cloud flare pro at $20 a mos to protect a few things like my vpn on Fortinet appliance for my lab.
As for trend micro yes, this is why i turned them into Access points, 3x3 802.11 ac WiFi and I am good for a few years.
what I think could be a bigger upside for gryphon is a pro-Sumer version at additional cost that we can tweak or enhance via api things like a list to block domains of your choosing.
by no means am I saying this device is terrible, like I noted bitdefender box 2 was kind of at the same point at launch. If it is a funding setup a kick starter I backed a number of those with less results. A USB port for printing I see questionable, or a usb port for security add I could see also. I would be more than happy with feedback to them, like I mentioned 3 rd party support for dns sec would also be important.
i would love to see a partner ecosystem of 3rd parties that can enhance the gryphon.
on item 3 above I think this is the key to future success, this is why I would love to see what they can accomplish. I do have cloud flare pro at $20 a mos to protect a few things like my vpn on Fortinet appliance for my lab.
As for trend micro yes, this is why i turned them into Access points, 3x3 802.11 ac WiFi and I am good for a few years.
what I think could be a bigger upside for gryphon is a pro-Sumer version at additional cost that we can tweak or enhance via api things like a list to block domains of your choosing.
by no means am I saying this device is terrible, like I noted bitdefender box 2 was kind of at the same point at launch. If it is a funding setup a kick starter I backed a number of those with less results. A USB port for printing I see questionable, or a usb port for security add I could see also. I would be more than happy with feedback to them, like I mentioned 3 rd party support for dns sec would also be important.
i would love to see a partner ecosystem of 3rd parties that can enhance the gryphon.
Last edited:
- Jan 27, 2017
- 3,317
Some of the earlier posts here seem to indicate people think Gryphon is an antivirus. It is not. The ESET aspect is sourcing the corporate web filtration databases from ESET. It's not going to scan files/malware/archives, etc. Nor should it be expected to, and neither will solutions like Fortinet - which still require a local root certificate on each device to do this.
The AI aspect examines port use and activity of IoT devices and protects from anomalies. Every other device that claims to do this really just uses a set of known ports, and doesn't actually utilize machine learning to study how a device normally operators, and to flag activity outside of that. I believe only Gryphon in the home market does this.
ASUS and AiProtection is not very good, and more importantly is a significant privacy invasion. Anyone stating it is better than Gryphon doesn't really understand the technology, and likely doesn't value privacy as part of a product effectiveness.
Adblocking on Gryphon uses Easylist. Nothing more, nothing less. If you don't think it is effective, then you aren't a fan of easylist, or you augment easylist with other databases/lists in uBlock which most people do. But for safety and to not have it be overtly blocking too many good things, it's best - I feel - that they stick with Easylist.
QOS, the device priority is 'maximum priority', and only 1 can be selected. However there is a slight workaround for this.. Any device you want absolute priority on outside of Gryphon is to set the device as unmanaged. For example switches in your home should be set to unmanaged. Which means they run without any monitoring or restrictions, and utilize the full available bandwidth. QOS Device priority within Gryphon is just there for managed, controlled, monitored devices and selecting one you want to have maximum throughput on while still having all of the protection. But honestly, for things like switches and stuff within a network, you don't want (or need) protection on them, nor will your network perfect as well as it should with it it.
The Gryphon can do some pretty remarkable things with tweaking of users, settings, and management. For example one can protect an internet server from external attack, while still allowing windows updates. Easy - just make a user called 'Server', set the permissions to Toddler, then approve exactly what you want the server to access. Full lockdown, no malware in the world is going to bypass that because only exactly the URL's you need that server to access, will be accessible. You can get exceedingly granular using this method.
Another tip - you can turn on full block WITH URL capture on.. Observe a devices function and URL hits only necessary for device function. Then create a user for that device, lock it down entirely, only permitting exactly the domains it needs to function. Presto. Full lockdown of that device.. For example my thermostat can only talk to the AWS server to allow my app to communicate with it, but it blocks every other website, telemetry, company URL's related to it - and it works just like it's supposed to but is blocking extraneous nonsense.
PS: Gryphon is giving everyone free premium protection from now until June - everyone is basically working at home across the world, so this is a very nice gesture on the part of Gryphon - I think! Also, Gryphon and it's ability to control internet use is extremely valuable right now with most people (and kids) at home. Having powerful features like this, it's hardening from hackers, and very nice protection will protect homes throughout the world.
The AI aspect examines port use and activity of IoT devices and protects from anomalies. Every other device that claims to do this really just uses a set of known ports, and doesn't actually utilize machine learning to study how a device normally operators, and to flag activity outside of that. I believe only Gryphon in the home market does this.
ASUS and AiProtection is not very good, and more importantly is a significant privacy invasion. Anyone stating it is better than Gryphon doesn't really understand the technology, and likely doesn't value privacy as part of a product effectiveness.
Adblocking on Gryphon uses Easylist. Nothing more, nothing less. If you don't think it is effective, then you aren't a fan of easylist, or you augment easylist with other databases/lists in uBlock which most people do. But for safety and to not have it be overtly blocking too many good things, it's best - I feel - that they stick with Easylist.
QOS, the device priority is 'maximum priority', and only 1 can be selected. However there is a slight workaround for this.. Any device you want absolute priority on outside of Gryphon is to set the device as unmanaged. For example switches in your home should be set to unmanaged. Which means they run without any monitoring or restrictions, and utilize the full available bandwidth. QOS Device priority within Gryphon is just there for managed, controlled, monitored devices and selecting one you want to have maximum throughput on while still having all of the protection. But honestly, for things like switches and stuff within a network, you don't want (or need) protection on them, nor will your network perfect as well as it should with it it.
The Gryphon can do some pretty remarkable things with tweaking of users, settings, and management. For example one can protect an internet server from external attack, while still allowing windows updates. Easy - just make a user called 'Server', set the permissions to Toddler, then approve exactly what you want the server to access. Full lockdown, no malware in the world is going to bypass that because only exactly the URL's you need that server to access, will be accessible. You can get exceedingly granular using this method.
Another tip - you can turn on full block WITH URL capture on.. Observe a devices function and URL hits only necessary for device function. Then create a user for that device, lock it down entirely, only permitting exactly the domains it needs to function. Presto. Full lockdown of that device.. For example my thermostat can only talk to the AWS server to allow my app to communicate with it, but it blocks every other website, telemetry, company URL's related to it - and it works just like it's supposed to but is blocking extraneous nonsense.
PS: Gryphon is giving everyone free premium protection from now until June - everyone is basically working at home across the world, so this is a very nice gesture on the part of Gryphon - I think! Also, Gryphon and it's ability to control internet use is extremely valuable right now with most people (and kids) at home. Having powerful features like this, it's hardening from hackers, and very nice protection will protect homes throughout the world.
- Apr 1, 2019
- 2,732
Have they responded to your query about the manual DNS? I tried to follow up and haven’t heard anything. However, current circumstances require extra patience and lenience. I do love the gryphon, just the fact that it is a stable powerhouse alone is worth it. Then add their security and it’s a wonder.
edit: Also good to see you poking your head in around these parts. You’ve been missed.
- Apr 1, 2019
- 2,732
So, it seems Firefox is doing something the Gryphon doesn’t like. Most times I visit virustotal it pops a malware alert (only in Firefox). I tried a clean install and removed all app data, same thing. It also randomly triggers it when the browser is open. All the gryphon tells me is it’s blocking googlehosted.com, which I’m assuming is coming from the dns header info from whatever IP it’s calling.
- Apr 1, 2019
- 2,732
Okay looking at the connections in uBlock Origin it appears that virustotal(dot)com connect to googlehosted when using Firefox, but not on Chrome or Chromium Edge. This is strange.
- Apr 1, 2019
- 2,732
Got a new firmware alert. I’m anxious to try it and see if the manual DNS bug goes away. Can’t install till tonight when we aren’t working. 
