Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




1384 posts

Uber Geek

Subscriber

# 166174 4-Mar-2015 22:32
Send private message

I was at a clients shop this evening. They have a Spark / Telecom Huawei HG659b
Long story cut short - I'm needing to open a port so they can view their security camera remotely.

Set up the application ( port in, port out, etc), set up a static ip address, registered the device , connected it all together, rebooted the router - and nothing.
I've checked the device responds etc so its not my setup. Checked using GRC. Like a lot of others got nothing but stealth on a port scan but when I scan the remote admin port or the remote ftp port they show up as open (port 8080)

I set the device as DMZ, rebooted - nothing.  I'm getting the same result as others have had and from memory I've seen this before on other huawei modem / routers. See the list of links below for other similar stories. huawei routers don't port forward - well at least the spark ones don't.

So why the strange subject title?
I phoned Telecom and got told they had to put me through to Huawei for support. Huawei took my name, the model number asked me the problem and then told me I would have to talk to vodafone for support.

I re-stated it was a telecom branded router, inside and out, from telecom and the model number.
"You need to get support from vodafone"

I reiterated I was a Telecom customer.  - "We only supply those routers to vodafone and you need to talk to them. "

I pointed out vodafone and spark / Xtra / telecom are competitors and sending TCom clients to vodafone is a bad move - especially if you are providing SLA support for TCom.

"It is a vodafone router - you need to talk to vodafone. "

Again I reiterated the competitor angle / issue and it was a TCom router.

"No sir they are are not competitors.  you need to talk to vodafone."

I must admit at that point I used an expletive not suitable here that can be abbreviated as BS (20c in my swear jar) and pointed out BT is a competitor of vodafone, Aussie Telecom is a competitor of aussie vodafone and as shore as ducks quack NZ Telecom is a competitor to NZ Vodafone. I then requested their Supervisor.

The talk with the supervisor went pretty much the same as above, xcept she told me it was a vodafone router I had. My reply, so why does it have a Spark / TCom symbol on the front, a tcom SSID, a TCom 5.8 SSID and Tcom branding all through the user interface, packaging and paperwork?

Who supplied your router sir? - telecom I replied.
But this is a vodafone router.

Holy mumbo jumbo batman - are these people thick?  I gently but insistently explained to her that Telecom put me through to them, that they supplied the router to TCom and TCom has an SLA for support of Huawei supplied routers which doesn't include sending me to vodafone for support.

But you need to go to vodafone as they configured that router.

After 30 mnutes of absolute frustration, forcing the superrvisor to get back on the phone after she put me back to the first "help(sic) desk" user etc she sent me the how to docs.

I checked them  - it runs out they tell you to set up the application settings but not a static IP, a device or anything else.
I pointed out all that had been done, pointed out what the docs they sent missed and when she mentioned vodafone again told her I would be reporting to the Telcom Heirarchy that their provider of routers who have an SLA agreement with them to provide support for those routers are sending their clients to vodafone for support.

"Is there anything else I can help you with today?"  Not likely sister - I dont feel very helped in the first place (click).

Now I expect to have to force me way through to 2nd and 3rd teir support for most Tcom issues as I am bright enough to resolve a lot of issues myself. However I am not expecting to have to go to vodafone to get support for my clients TCom supplied router.

Moral of the story?  Telecom / spark / xtra / whatever or whoever you are now - The Huawei business routers you supply are not only slow and damaged but Huawei are actively sending your clients to the opposition. My advice? Ditch huawei, if not for the crappy routers at least for the completely dumb donkey (a$$ is considered a bad word here - even though its an animal and not a body part)  support they provide. They are double dipping you in the damage to your reputation department.


A sample of huawei router issues with port forwarding.

http://www.geekzone.co.nz/forums.asp?forumid=39&topicid=153502
http://www.geekzone.co.nz/forums.asp?topicid=143156




nunz

View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
Mr Snotty
8870 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 1251418 4-Mar-2015 22:54
3 people support this post
Send private message

2nd post on the first thread you linked to - you need to specify the interface (ADSL, VDSL or Fibre) to forward the ports from. I've done it in the past and it has worked fine.

Also it has almost been a year since the Spark name change. Can we please stop referring Spark as Telecom? We all know who Spark is now so there is no need to even mention Telecom anymore. I also believe if you upgrade the firmware from their website here then you get the full blown Spark branding (and also fixes bugs).

Personally I think these routers are great and work well, they're not as broken as you say.

Spark even provide a port forwarding tutorial here so I honestly have no idea why you called up Huawei, Spark always have and always will support the routers they provide to their customers even right down to port forwarding if you get the right person but they've actually got extensive help guides on their website relating to the routers they've either once provided or provide now.




BDFL - Memuneh
64660 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  # 1251419 4-Mar-2015 22:54
3 people support this post
Send private message

Interesting story. I will ask someone from Huawei.

On the other hand, please don't port forward to IP cameras and don't put them in the DMZ. Most cameras have vulnerabilities that haven't been patched and won't be. Most use default passwords and there are websites around that link to "open" cameras for all to see.

It's a bad idea.





 
 
 
 


Mr Snotty
8870 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  # 1251420 4-Mar-2015 22:55
Send private message

freitasm: Interesting story. I will ask someone from Huawei.

On the other hand, please don't port forward to IP cameras and don't put them in the DMZ. Most cameras have vulnerabilities that haven't patched and won't be. Most use default passwords and there websites around that link to "open" cameras for all to see.

It's a bad idea.



This, have also seen camera systems exploited on a shell level (some D-Link ones). It is very important you understand what you're forwarding to.




28264 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  # 1251425 4-Mar-2015 23:07
4 people support this post
Send private message

Never, ever set a port forward on an IP camera. It's just an open invite for trouble.

14224 posts

Uber Geek

Trusted
Subscriber

  # 1251465 5-Mar-2015 07:32
One person supports this post
Send private message

@nunz with your permission I can have a Huawei Executive look at this.




Mike
Retired IT Manager. 
The views stated in my posts are my personal views and not that of any other organisation.

 

There is no planet B

 

 


4123 posts

Uber Geek
Inactive user


  # 1251484 5-Mar-2015 08:21
Send private message

sbiddle: Never, ever set a port forward on an IP camera. It's just an open invite for trouble.


Excuse my ignorance but how do view an IP camera without port forward, for example if you are outside the building it is located in?



566 posts

Ultimate Geek

Trusted

  # 1251488 5-Mar-2015 08:29
3 people support this post
Send private message

kiwitrc:
sbiddle: Never, ever set a port forward on an IP camera. It's just an open invite for trouble.


Excuse my ignorance but how do view an IP camera without port forward, for example if you are outside the building it is located in?




Remote into computer on network via teamviewer/VPN then access camera.




Apple Certified Support Professional (ACSP) 10.10, MCITP 2008

 
 
 
 


7 posts

Wannabe Geek

Trusted
Huawei

  # 1251592 5-Mar-2015 11:53
10 people support this post
Send private message

Hi nunz, Nick here from Huawei NZ.

You probably don't need me confirm for you that it's not company policy to direct Spark customers to Vodafone support and the router you've listed is most certainly a Spark unit. Apologies for the mistake there.
The likely explanation is what we call a "training error" at the helpdesk. On the flipside, it is nice to note that it seems the routers have proven so reliable the helpdesk hasn't really been tested until now...

However, that does need sorting so our NZ support manager is looking into it and we should be able to make sure this is a one-off. I'll also check to make sure new employees in off-shore helpdesks are aware that Spark may still be referenced as Telecom on some calls. That might cause some confusion otherwise.  

Regarding your inquiry, the helpdesk people should have the call logged and be able to get back in touch to assist you once we've spoken to them. I'll also keep tabs on it, as will our local support manager, and I can PM you for contact details if they've not got your number.

Cheers
Nick

PS - thanks to Mauricio for the heads-up on this thread.

2856 posts

Uber Geek

Trusted
Lifetime subscriber

  # 1251601 5-Mar-2015 12:15
2 people support this post
Send private message

Hello Nick. Good to see you on GZ. I have some feedback as a power user of the HG659. I have found it to be a frustrating device. This is mainly due to Vodafone locking down the admin password. This has caused a number of dramas and a quick search of GZ will find a number of threads mostly relating to users unable to set custom DNS servers, DNS dropping on reboot and VOIP.

Power users are now tending to flash Sparks firmware due to the older Vodafone firmware issues.

http://www.geekzone.co.nz/forums.asp?forumid=40&topicid=165856

I am not sure what the solution is but just to say that my device is going well after a swap from Vodafone to Sparks firmware.

Kind regards, Matt.




My views (except when I am looking out their windows) are not those of my employer.

xpd

Chief Trash Bandit
10035 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 1251611 5-Mar-2015 12:42
One person supports this post
Send private message

Ditto, the V/fone firmware bites - Huawei need to talk to them about getting it sorted. Browse the V/fone forums as well to see the issues raised about it... 






XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

Emulation - The art of getting your $4000 PC to run an 80's system - and still fails.

 

Add me on Steam


2848 posts

Uber Geek

Trusted
Lifetime subscriber

  # 1251666 5-Mar-2015 13:47
One person supports this post
Send private message

I don't see the issue with loading on the Spark firmware onto the Vodafone supplied ones. As long as you can flash the firmware on and it doesn't brick the router then what is the issue?

I don't think any of the VoIP features are enabled on the 659 Spark firmware. But could be wrong here.

So perhaps the thread name should be the other way around, people directing Vodafone customers to flash their 659's with Spark firmware :)





xpd

Chief Trash Bandit
10035 posts

Uber Geek

Mod Emeritus
Trusted
Lifetime subscriber

  # 1251724 5-Mar-2015 14:48
Send private message

Sorry , new topic here




XPD / Gavin / DemiseNZ

 

Server : i5-3470s @ 3.50GHz  16GB RAM  Win 10 Pro    Workstation : i5-3570K @ 3.40GHz  20GB RAM  RX580 4GB Win 10 Pro    Console : Xbox One

 

https://www.xpd.co.nz - Games, emulation, geekery, and my attempts at photography.     Now on BigPipe 100/100 and 2Talk

 

Emulation - The art of getting your $4000 PC to run an 80's system - and still fails.

 

Add me on Steam




1384 posts

Uber Geek

Subscriber

  # 1253003 7-Mar-2015 21:06
Send private message

freitasm: Interesting story. I will ask someone from Huawei.

On the other hand, please don't port forward to IP cameras and don't put them in the DMZ. Most cameras have vulnerabilities that haven't been patched and won't be. Most use default passwords and there are websites around that link to "open" cameras for all to see.

It's a bad idea.



The only reason for putting a camera PC on the DMZ was to test the router - a last resort. Its a standard PC running bespoke (probably linux based) software. 

While security by obscurity is not security - we move all our incoming connections off default ports where possible and set them to very explicit IP ranges where possible.  Most of the connections are to an inbuilt web server - default ports changed and paswords set up. where possible we setup a VPN and connect over that.









nunz



1384 posts

Uber Geek

Subscriber

  # 1253005 7-Mar-2015 21:08
Send private message

michaelmurfy:
freitasm: Interesting story. I will ask someone from Huawei.

On the other hand, please don't port forward to IP cameras and don't put them in the DMZ. Most cameras have vulnerabilities that haven't patched and won't be. Most use default passwords and there websites around that link to "open" cameras for all to see.

It's a bad idea.



This, have also seen camera systems exploited on a shell level (some D-Link ones). It is very important you understand what you're forwarding to.


Not just cameras - DLink routers as well. We don't use them anymore for that very reason.  most systems that are decent have a box in front of them that acts as a router between cameras and internet connection.
The cameras in discussion here were analogue ones with an IP PC infront of it - pingable etc.





nunz

 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Logitech introduces new Made for Google keyboard and mouse devices
Posted 16-Oct-2019 13:36


MATTR launches to accelerate decentralised identity
Posted 16-Oct-2019 10:28


Vodafone X-Squad powers up for customers
Posted 16-Oct-2019 08:15


D Link ANZ launches EXO Smart Mesh Wi Fi Routers with McAfee protection
Posted 15-Oct-2019 11:31


Major Japanese retailer partners with smart New Zealand technology IMAGR
Posted 14-Oct-2019 10:29


Ola pioneers one-time passcode feature to fight rideshare fraud
Posted 14-Oct-2019 10:24


Spark Sport new home of NZC matches from 2020
Posted 10-Oct-2019 09:59


Meet Nola, Noel Leeming's new digital employee
Posted 4-Oct-2019 08:07


Registrations for Sprout Accelerator open for 2020 season
Posted 4-Oct-2019 08:02


Teletrac Navman welcomes AI tech leader Jens Meggers as new President
Posted 4-Oct-2019 07:41


Vodafone makes voice of 4G (VoLTE) official
Posted 4-Oct-2019 07:36


2degrees Reaches Milestone of 100,000 Broadband Customers
Posted 1-Oct-2019 09:17


Nokia 1 Plus available in New Zealand from 2nd October
Posted 30-Sep-2019 17:46


Ola integrates Apple Pay as payment method in New Zealand
Posted 25-Sep-2019 09:51


Facebook Portal to land in New Zealand
Posted 19-Sep-2019 18:35



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.