Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


115 posts

Master Geek
+1 received by user: 8


Topic # 151861 8-Sep-2014 11:12
Send private message

Sometime over the weekend, Spark started blocking me from connecting to my home router on port 53.

I used to (it worked on Friday) SSH over port 53 (to get around a work firewall) but back at work this morning it no longer works. I also can't connect from other locations (including another Spark connection) so it appears that they've started blocking port 53.

Anyone else notice this? I've had to change to SSH over port 443 instead.





Filter this topic showing only the reply marked as answer Create new topic
653 posts

Ultimate Geek
+1 received by user: 185

Trusted
Spark NZ

  Reply # 1124151 8-Sep-2014 11:17
2 people support this post
Send private message

Yes, we are now blocking incoming port 53.
If you need it unblocked, give us a call.  Just ask to unblock port 25 and that will unblock 53 as well.
Normally we would provide more in advance communications of a change like this, but I'm sure you understand how quickly we had to move over the weekend.




My views are my own, and may not necessarily represent those of my employer.



115 posts

Master Geek
+1 received by user: 8


  Reply # 1124158 8-Sep-2014 11:22
Send private message

cbrpilot: Yes, we are now blocking incoming port 53.
If you need it unblocked, give us a call.  Just ask to unblock port 25 and that will unblock 53 as well.


Thanks. Is there any particular number, email address or contact form I should use to expedite the unblocking?

3148 posts

Uber Geek
+1 received by user: 883

Trusted

  Reply # 1124159 8-Sep-2014 11:23
Send private message

Probably this one:

https://www.spark.co.nz/form/1,6849,5664,00.html

(I had to do this for a relative a little while ago)



115 posts

Master Geek
+1 received by user: 8


  Reply # 1124170 8-Sep-2014 11:34
Send private message

sidefx: Probably this one:

https://www.spark.co.nz/form/1,6849,5664,00.html

(I had to do this for a relative a little while ago)


Thanks. Just filled it in.

Who writes this stuff? - "Please remember to restart your modem or router for the port 25 changes to take affect."



653 posts

Ultimate Geek
+1 received by user: 185

Trusted
Spark NZ

  Reply # 1124173 8-Sep-2014 11:37
Send private message

You have two options:
1) You can fill out our official form at: https://www.spark.co.nz/form/1,6849,5664,00.html
Not sure of the official turnaround time on that one. 
2) You can PM me your details.  Please include:
Your Spark account number
The line# that you want the port 25/53 filtering disabled on
Hopefully I can get that done relatively quickly.

Please bear in mind the following that by opting out you agree to the terms and conditions listed on the form (linked above).  E.g.
o I agree to maintain up to date anti-virus and firewall software.
o I have read and agree to the Spark terms and conditions.
o In accordance with the above terms Spark reserve the right to filter port 25 for all customers at any time and without any additional notice. 





My views are my own, and may not necessarily represent those of my employer.

10 posts

Wannabe Geek
+1 received by user: 9


  Reply # 1124175 8-Sep-2014 11:42
Send private message

ElectronicFerret: Sometime over the weekend, Spark started blocking me from connecting to my home router on port 53.

I used to (it worked on Friday) SSH over port 53 (to get around a work firewall) but back at work this morning it no longer works. I also can't connect from other locations (including another Spark connection) so it appears that they've started blocking port 53.

Anyone else notice this? I've had to change to SSH over port 443 instead.






Port 53 is the DNS port. If you have that open and a DNS running on your router, others can use your router to relay packets to Sparks DNS server as part of a DNS amplification attack. So it makes total sense for them to block it.

3395 posts

Uber Geek
+1 received by user: 397

Trusted

  Reply # 1124203 8-Sep-2014 12:31
Send private message

What dodgy CPE has that running?





653 posts

Ultimate Geek
+1 received by user: 185

Trusted
Spark NZ

  Reply # 1124216 8-Sep-2014 12:45
Send private message

It's not usually the CPE itself that is broken, it is that it gets hacked, and then the hackers open up that relay.




My views are my own, and may not necessarily represent those of my employer.



115 posts

Master Geek
+1 received by user: 8


  Reply # 1124252 8-Sep-2014 13:05
Send private message

Zeon: What dodgy CPE has that running?


I'm doing a port forward from public TCP 53 to 22 on an internal linux box.

It's far from dodgy, it's simply running SSH on a non standard port.

3449 posts

Uber Geek
+1 received by user: 1209

Subscriber

  Reply # 1124542 8-Sep-2014 17:12
Send private message

ElectronicFerret:
Zeon: What dodgy CPE has that running?


I'm doing a port forward from public TCP 53 to 22 on an internal linux box.

It's far from dodgy, it's simply running SSH on a non standard port.


So why not go right out of the standard service ports? 8022 might be good easy one to remember for SSH.

148 posts

Master Geek
+1 received by user: 49


  Reply # 1124565 8-Sep-2014 17:31
One person supports this post
Send private message

chevrolux:
ElectronicFerret:
Zeon: What dodgy CPE has that running?


I'm doing a port forward from public TCP 53 to 22 on an internal linux box.

It's far from dodgy, it's simply running SSH on a non standard port.


So why not go right out of the standard service ports? 8022 might be good easy one to remember for SSH.


"To get around work firewall"

653 posts

Ultimate Geek
+1 received by user: 185

Trusted
Spark NZ

  Reply # 1124589 8-Sep-2014 17:51
Send private message

Let me know how you get on with that online form.
I don't want to circumvent the normal processes, but if you're not getting any joy fast enough there, let me know and I can look into where those forms go, and see what I can do to hurry it along.




My views are my own, and may not necessarily represent those of my employer.

Filter this topic showing only the reply marked as answer Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

N4L helping TAKA Trust bridge the digital divide for Lower Hutt students
Posted 18-Jun-2018 13:08


Winners Announced for 2018 CIO Awards
Posted 18-Jun-2018 13:03


Logitech Rally sets new standard for USB-connected video conference cameras
Posted 18-Jun-2018 09:27


Russell Stanners steps down as Vodafone NZ CEO
Posted 12-Jun-2018 09:13


Intergen recognised as 2018 Microsoft Country Partner of the Year for New Zealand
Posted 12-Jun-2018 08:00


Finalists Announced For Microsoft NZ Partner Awards
Posted 6-Jun-2018 15:12


Vocus Group and Vodafone announce joint venture to accelerate fibre innovation
Posted 5-Jun-2018 10:52


Kogan.com to launch Kogan Mobile in New Zealand
Posted 4-Jun-2018 14:34


Enable doubles fibre broadband speeds for its most popular wholesale service in Christchurch
Posted 2-Jun-2018 20:07


All or Nothing: New Zealand All Blacks arrives on Amazon Prime Video
Posted 2-Jun-2018 16:21


Innovation Grant, High Tech Awards and new USA office for Kiwi tech company SwipedOn
Posted 1-Jun-2018 20:54


Commerce Commission warns Apple for misleading consumers about their rights
Posted 30-May-2018 13:15


IBM leads Call for Code to use cloud, data, AI, blockchain for natural disaster relief
Posted 25-May-2018 14:12


New FUJIFILM X-T100 aims to do better job than smartphones
Posted 24-May-2018 20:17


Stuff takes 100% ownership of Stuff Fibre
Posted 24-May-2018 19:41



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.