Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


118 posts

Master Geek
+1 received by user: 9


Topic # 151861 8-Sep-2014 11:12
Send private message

Sometime over the weekend, Spark started blocking me from connecting to my home router on port 53.

I used to (it worked on Friday) SSH over port 53 (to get around a work firewall) but back at work this morning it no longer works. I also can't connect from other locations (including another Spark connection) so it appears that they've started blocking port 53.

Anyone else notice this? I've had to change to SSH over port 443 instead.





Filter this topic showing only the reply marked as answer Create new topic
676 posts

Ultimate Geek
+1 received by user: 222

Trusted
Spark NZ

  Reply # 1124151 8-Sep-2014 11:17
2 people support this post
Send private message

Yes, we are now blocking incoming port 53.
If you need it unblocked, give us a call.  Just ask to unblock port 25 and that will unblock 53 as well.
Normally we would provide more in advance communications of a change like this, but I'm sure you understand how quickly we had to move over the weekend.




My views are my own, and may not necessarily represent those of my employer.



118 posts

Master Geek
+1 received by user: 9


  Reply # 1124158 8-Sep-2014 11:22
Send private message

cbrpilot: Yes, we are now blocking incoming port 53.
If you need it unblocked, give us a call.  Just ask to unblock port 25 and that will unblock 53 as well.


Thanks. Is there any particular number, email address or contact form I should use to expedite the unblocking?

3165 posts

Uber Geek
+1 received by user: 890

Trusted

  Reply # 1124159 8-Sep-2014 11:23
Send private message

Probably this one:

https://www.spark.co.nz/form/1,6849,5664,00.html

(I had to do this for a relative a little while ago)



118 posts

Master Geek
+1 received by user: 9


  Reply # 1124170 8-Sep-2014 11:34
Send private message

sidefx: Probably this one:

https://www.spark.co.nz/form/1,6849,5664,00.html

(I had to do this for a relative a little while ago)


Thanks. Just filled it in.

Who writes this stuff? - "Please remember to restart your modem or router for the port 25 changes to take affect."



676 posts

Ultimate Geek
+1 received by user: 222

Trusted
Spark NZ

  Reply # 1124173 8-Sep-2014 11:37
Send private message

You have two options:
1) You can fill out our official form at: https://www.spark.co.nz/form/1,6849,5664,00.html
Not sure of the official turnaround time on that one. 
2) You can PM me your details.  Please include:
Your Spark account number
The line# that you want the port 25/53 filtering disabled on
Hopefully I can get that done relatively quickly.

Please bear in mind the following that by opting out you agree to the terms and conditions listed on the form (linked above).  E.g.
o I agree to maintain up to date anti-virus and firewall software.
o I have read and agree to the Spark terms and conditions.
o In accordance with the above terms Spark reserve the right to filter port 25 for all customers at any time and without any additional notice. 





My views are my own, and may not necessarily represent those of my employer.

10 posts

Wannabe Geek
+1 received by user: 9


  Reply # 1124175 8-Sep-2014 11:42
Send private message

ElectronicFerret: Sometime over the weekend, Spark started blocking me from connecting to my home router on port 53.

I used to (it worked on Friday) SSH over port 53 (to get around a work firewall) but back at work this morning it no longer works. I also can't connect from other locations (including another Spark connection) so it appears that they've started blocking port 53.

Anyone else notice this? I've had to change to SSH over port 443 instead.






Port 53 is the DNS port. If you have that open and a DNS running on your router, others can use your router to relay packets to Sparks DNS server as part of a DNS amplification attack. So it makes total sense for them to block it.

3399 posts

Uber Geek
+1 received by user: 398

Trusted

  Reply # 1124203 8-Sep-2014 12:31
Send private message

What dodgy CPE has that running?





676 posts

Ultimate Geek
+1 received by user: 222

Trusted
Spark NZ

  Reply # 1124216 8-Sep-2014 12:45
Send private message

It's not usually the CPE itself that is broken, it is that it gets hacked, and then the hackers open up that relay.




My views are my own, and may not necessarily represent those of my employer.



118 posts

Master Geek
+1 received by user: 9


  Reply # 1124252 8-Sep-2014 13:05
Send private message

Zeon: What dodgy CPE has that running?


I'm doing a port forward from public TCP 53 to 22 on an internal linux box.

It's far from dodgy, it's simply running SSH on a non standard port.

3536 posts

Uber Geek
+1 received by user: 1292

Subscriber

  Reply # 1124542 8-Sep-2014 17:12
Send private message

ElectronicFerret:
Zeon: What dodgy CPE has that running?


I'm doing a port forward from public TCP 53 to 22 on an internal linux box.

It's far from dodgy, it's simply running SSH on a non standard port.


So why not go right out of the standard service ports? 8022 might be good easy one to remember for SSH.

149 posts

Master Geek
+1 received by user: 49


  Reply # 1124565 8-Sep-2014 17:31
One person supports this post
Send private message

chevrolux:
ElectronicFerret:
Zeon: What dodgy CPE has that running?


I'm doing a port forward from public TCP 53 to 22 on an internal linux box.

It's far from dodgy, it's simply running SSH on a non standard port.


So why not go right out of the standard service ports? 8022 might be good easy one to remember for SSH.


"To get around work firewall"

676 posts

Ultimate Geek
+1 received by user: 222

Trusted
Spark NZ

  Reply # 1124589 8-Sep-2014 17:51
Send private message

Let me know how you get on with that online form.
I don't want to circumvent the normal processes, but if you're not getting any joy fast enough there, let me know and I can look into where those forms go, and see what I can do to hurry it along.




My views are my own, and may not necessarily represent those of my employer.

Filter this topic showing only the reply marked as answer Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Intel introduces new NUC kits and NUC mini PCs
Posted 16-Aug-2018 11:03


The Warehouse leaps into the AI future with Google
Posted 15-Aug-2018 17:56


Targus set sights on enterprise and consumer growth in New Zealand
Posted 13-Aug-2018 13:47


Huawei to distribute nova 3i in New Zealand
Posted 9-Aug-2018 16:23


Home robot Vector to be available in New Zealand stores
Posted 9-Aug-2018 14:47


Panasonic announces new 2018 OLED TV line up
Posted 7-Aug-2018 16:38


Kordia completes first live 4K TV broadcast
Posted 1-Aug-2018 13:00


Schools get safer and smarter internet with Managed Network Upgrade
Posted 30-Jul-2018 20:01


DNC wants a safer .nz in the coming year
Posted 26-Jul-2018 16:08


Auldhouse becomes an AWS Authorised Training Delivery Partner in New Zealand
Posted 26-Jul-2018 15:55


Rakuten Kobo launches Kobo Clara HD entry level reader
Posted 26-Jul-2018 15:44


Kiwi team reaches semi-finals at the Microsoft Imagine Cup
Posted 26-Jul-2018 15:38


KidsCan App to Help Kiwi Children in Need
Posted 26-Jul-2018 15:32


FUJIFILM announces new high-performance lenses
Posted 24-Jul-2018 14:57


New FUJIFILM XF10 introduces square mode for Instagram sharing
Posted 24-Jul-2018 14:44



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.