Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


2 posts

Wannabe Geek


Topic # 56311 13-Jan-2010 10:01
Send private message

hello everyone.


I'm a long time reader, first time writer.  :]

I searched the forums for this, but couldnt find anything related... so i figured lets discuss it.


My brother was using vodafone as his isp up until a few weeks ago. He had some dispute over the cost of data and told them they could take their account and shove it. This left him with a free router from Huawai/vodafone that he told me i could have. 
I was telling my chinese freind at work about my new router, and he tells me that its chinese design and munufacture, they developed this brand them selves because their broadband market was so big, the government decided that they should supply the people with equipment, not some outsider organisation. Apparently this brand is now considered some of the most stable equipment you can buy. 

Excelent vodafone!! at least you are distributing quality gear!!


So i get my new gifted router home, I plug it in, I configure the LAN, the WAN, and the WLAN. all is going well... I move a 4gig file across the WLAN several times, and no transfer drop, completed the task everytime with no failer....  (saweeeet....   at last a decent router!!)

So now i need to configer my port fowarding... FTP... SMTP for my Phone mail and the remote desktops to 3 PC's   .. all standard stuff..... until....

I get to the port fowarding section, and i see that there is already a port opened up, port 7547, this port directs traffic to and from the router(fowards to 192.168.1.1, the routers address). This port cannot be edited, or removed from the list. The port protical for 7547 is CWMP. The C= "Customer Premises Equipment"  and WMP= " Wan Management Protocol"

I do some researching, and i ask my Chinese friend. It appears that this is a monitoring port. Apparantly in China, it is the law that the ISPs must record and keep all your internet activity/history for a period of 2 months.

It appears that vodafone is ditributing this router with its backdoor, to all their customers. What i'd like to know, is....

Am i wrong about this?

Is there anyone that can confirm this, does vodafone have the equipment server side to do this monitoring?

If they arent monitoring now, will they be in the future?

Do vodafone plan to tell their customers about this backdoor, or will they snoop without asking?


interesting none the less......





Create new topic
3444 posts

Uber Geek
+1 received by user: 952


  Reply # 289552 13-Jan-2010 10:15
Send private message

I am not sure Vodafone use it for active snooping, but it appears a number of ISPs around the world leave this port open on the kit they provide customers,


http://www.o2help.co.uk/router-close-port-7547/

27140 posts

Uber Geek
+1 received by user: 6579

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 289607 13-Jan-2010 12:42
Send private message

It's typically used for remote provisoning of the devices so the ISP can easily make changes such as firmware upgrades and provisioning of network settings.




6328 posts

Uber Geek
+1 received by user: 391

Moderator
Trusted
Lifetime subscriber

  Reply # 289632 13-Jan-2010 14:01
Send private message

TsevenHD2: I do some researching, and i ask my Chinese friend. It appears that this is a monitoring port. Apparantly in China, it is the law that the ISPs must record and keep all your internet activity/history for a period of 2 months.


If they were monitoring, ISPs would do this from their end since the data must past through their gateways before hiting the end user's router.

27140 posts

Uber Geek
+1 received by user: 6579

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  Reply # 289641 13-Jan-2010 14:19
Send private message

TsevenHD2: I do some researching, and i ask my Chinese friend. It appears that this is a monitoring port. Apparantly in China, it is the law that the ISPs must record and keep all your internet activity/history for a period of 2 months.


Your ISP's has this data available anyway - they don't need to access your router. Every time you look at a site they can be logging this all traffic for billing purposes.


I fix stuff!
1708 posts

Uber Geek
+1 received by user: 381

Trusted
Vocus
Subscriber

  Reply # 289664 13-Jan-2010 15:01
Send private message

CWMP is used for remote provisioning of your CPE's. Also better known as TR-069.

Its used to keep firmware uptodate and to provision any new configs required for future operations.

Its an open standard and deployed on alot of CPE devices.



2 posts

Wannabe Geek


  Reply # 289669 13-Jan-2010 15:13
Send private message

Hey everyone, thank you all for your replies, very helpful. My mind is a little more at ease.

Thanks wellygary, I'll reconnect the router tonight and see if i cant disable that port thru the Telnet interface.

I'd love to keep using this router, it seems like a fine device, but cant bring myself to use it while this port is enabled.


Create new topic

Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.