Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




6973 posts

Uber Geek

Trusted
Subscriber

# 255622 21-Aug-2019 13:54
Send private message quote this post

Hi, 2Talk dont have their own sub forum and as they are owned by Vocus I have put it here, mods move it if you think needed.

 

Anyway, I have a customer that has a business UFB 100/100 connection that is on CG-NAT, I did not set this up, a previous IT supplier did, regardless its doing all they need.

 

The question I have, is that on the firewall I am seeing continual connection requests on the client WAN interface from three or four sources, these come from subnets belonging to Facebook, Google and Amazon, have not seen any from others but they may be there, these are arriving every 1-3secs, this would imply that there are port forwards or other pin hole through the NAT. 

 

I also see a regular icmp from a 2Talk address, this I presume is a maintenance probe, but can someone please shed light on the reqests from outside. I note port 443 as the source port but seemingly random dst port in each connection attempt.

 

Cyril


Create new topic
6 posts

Wannabe Geek


  # 2303435 22-Aug-2019 07:24
Send private message quote this post

Can you post a log of the connection requests.




6973 posts

Uber Geek

Trusted
Subscriber

  # 2303452 22-Aug-2019 08:17
Send private message quote this post

Hi, as below, I see a new player has arrived, 40.100.144.242 is Microsoft

 

Click to see full size

 

Cyril

 

 

 

 


 
 
 
 


4208 posts

Uber Geek


  # 2303466 22-Aug-2019 08:27
Send private message quote this post

Do 2talk still have that port forwarding page you can do from the portal? It allowed you to forward ports from a true public IP through to the private IP assigned to your connection. From memory, there was a handful set by default for the likes of 80,443,3389 etc.

 

Weird to see new connections coming in like that from those companies though..




6973 posts

Uber Geek

Trusted
Subscriber

  # 2303467 22-Aug-2019 08:31
Send private message quote this post

Hi Sam, not too sure, I dont have access to the account I believe the original support guy does. As a result to gain remote access I use the console in one of the UniFi APs to open a shell back to my machine and do a remote tunnel from there.

 

Cyril


4208 posts

Uber Geek


  # 2303470 22-Aug-2019 08:36
Send private message quote this post

The PPP password should be their account password*. So if you know one of the DDI's or just the account number you should be able to log in ;-)

 

Edit: *most of the time




6973 posts

Uber Geek

Trusted
Subscriber

  # 2303625 22-Aug-2019 10:53
Send private message quote this post

Hmmm, so looks like someone has been playing, at around 10:22am it all stopped...................................... jay perhaps?  :)

 

Cyril


6 posts

Wannabe Geek


  # 2303631 22-Aug-2019 11:01
Send private message quote this post

wasn't me, just had a chance to look at this thread again now....


Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Arlo unveils its first video doorbell
Posted 21-Oct-2019 08:27


New Zealand students shortlisted for James Dyson Award
Posted 21-Oct-2019 08:18


Norton LifeLock Launches Norton 360
Posted 21-Oct-2019 08:11


Microsoft New Zealand Partner Awards results
Posted 18-Oct-2019 10:18


Logitech introduces new Made for Google keyboard and mouse devices
Posted 16-Oct-2019 13:36


MATTR launches to accelerate decentralised identity
Posted 16-Oct-2019 10:28


Vodafone X-Squad powers up for customers
Posted 16-Oct-2019 08:15


D Link ANZ launches EXO Smart Mesh Wi Fi Routers with McAfee protection
Posted 15-Oct-2019 11:31


Major Japanese retailer partners with smart New Zealand technology IMAGR
Posted 14-Oct-2019 10:29


Ola pioneers one-time passcode feature to fight rideshare fraud
Posted 14-Oct-2019 10:24


Spark Sport new home of NZC matches from 2020
Posted 10-Oct-2019 09:59


Meet Nola, Noel Leeming's new digital employee
Posted 4-Oct-2019 08:07


Registrations for Sprout Accelerator open for 2020 season
Posted 4-Oct-2019 08:02


Teletrac Navman welcomes AI tech leader Jens Meggers as new President
Posted 4-Oct-2019 07:41


Vodafone makes voice of 4G (VoLTE) official
Posted 4-Oct-2019 07:36



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.