Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsSpark New Zealand (including Skinny and BigPipe)XT IP Range
tcpdump

311 posts

Ultimate Geek


#96648 1-Feb-2012 11:02
Send private message

Hello,

Does anyone know the IP range that's allocated to XT Mobile connections?
I want to put an exception into the firewall to allow connections from my mobile without port knocking.
So far I've seen that they have (at least) 115.189.0.0/16 but this is likely to be used by xtra or other parts as well.

Thanks. 

Create new topic
johnr
19282 posts

Uber Geek
Inactive user


  #575773 1-Feb-2012 11:03
Send private message

Not a good idea as the IP range is not static

John



plambrechtsen
1948 posts

Uber Geek
Inactive user


  #575777 1-Feb-2012 11:06
Send private message

There is this old blog post from NealR.

But I am not sure if it has changed / been updated for a while.  Will go and ask him.

tcpdump

311 posts

Ultimate Geek


  #575786 1-Feb-2012 11:15
Send private message

Great stuff, thank you.

It's not a big deal if some subnets change as I also have port knocknig enabled if I get an IP address from a new subnet.
I'm not too concerned about security implications as I'll only allow ssh and it's extremely unlikely to have brute force attacks from XT phones. Also, fail2ban will do its job if need be.

Thanks again, if you have an update on the subnet list posted above it would be appreciated.



plambrechtsen
1948 posts

Uber Geek
Inactive user


  #575792 1-Feb-2012 11:38
Send private message

Neal said he tries to keep it up to date however this is done on a best efforts basis so you should assume it could radically change without warning.

tcpdump

311 posts

Ultimate Geek


  #575795 1-Feb-2012 11:39
Send private message

Understood, thanks again.

Zeon
3916 posts

Uber Geek

Trusted

  #575797 1-Feb-2012 11:47
Send private message

TBH this is a dumb idea as the ranges could change without warning. If you want to do this then get a static IP.

Fail2ban should be good enough....




Speedtest 2019-10-14

tcpdump

311 posts

Ultimate Geek


  #575798 1-Feb-2012 11:51
Send private message

As I said earlier, I have a port-knocking solution in place. The allowing of the range saves me a click to launch the 'knock app'. If the range changes, I just launch the knock app and that's that.

Not sure if (how) I can get a static IP on my XT-Mobile.

 
 
 
 

Cloud spending continues to surge globally, but most organisations haven’t made the changes necessary to maximise the value and cost-efficiency benefits of their cloud investments. Download the whitepaper From Overspend to Advantage now.
plambrechtsen
1948 posts

Uber Geek
Inactive user


  #575801 1-Feb-2012 11:55
Send private message

tcpdump: As I said earlier, I have a port-knocking solution in place. The allowing of the range saves me a click to launch the 'knock app'. If the range changes, I just launch the knock app and that's that.

Not sure if (how) I can get a static IP on my XT-Mobile.


You can get a Private APN.  But that comes at a cost.

Ragnor
8218 posts

Uber Geek

Trusted

  #575857 1-Feb-2012 13:20
Send private message

Why not just setup a vpn, most smartphone support various vpn connection options.

tcpdump

311 posts

Ultimate Geek


  #575859 1-Feb-2012 13:23
Send private message

The firewall is denying everything, including VPN. After a successful knock (or if the IP address/range is in a whitelist) ssh/vpn is being allowed.

Yes, I can be even more paranoid if required ;)

Ragnor
8218 posts

Uber Geek

Trusted

  #575863 1-Feb-2012 13:27
Send private message

Hah fair enough!

Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00

eero Pro 7 Review
Posted 23-Jul-2025 12:07

BeeStation Plus Review
Posted 21-Jul-2025 14:21

eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01

WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32

RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26

Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24

Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05

Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01

Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01

Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22

Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46

Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42

D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34

Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.







RSS feeds
Main feed
Forums feed
Copyright
©2002-2025 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Affiliate links
Samsung
AliExpress
Wise
Sharesies
GoodSync
Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright