Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




20 posts

Geek


#268504 22-Mar-2020 21:41
Send private message quote this post

Hi,

 

 

 

I can't ping my Fritzbox 7490 from the internet. Should I be able to? Just results in no response if ipv4 address pinged from phone (on cell connection) or one of those online ping utilities.

 

I've checked, Stealth mode if disable on the Fritzbox.

 

 

 

The bigger problem is that my RDP connection to a PC fro the internet stopped working. I tried heaps of things to diagnose it, and in the process discovered I couldn't ping the router. Tried calling 2Deg tech support, but on hold for an hour so gave up.

 

 

 

Things I've tried to fix RDP:

 

-Can RDP to PC from within LAN

 

-Can http to web server on same PC from within LAN

 

-Setup up port forwarding a few times. Actually reset Fritzbox factory settings, to start from scratch, but no luck.

 

-Tried RDPing to internet ip address, instead of DynDNS address, but same result

 

 

 

Any ideas what to check for next?

 

Thanks!


Create new topic
5808 posts

Uber Geek


  #2444170 22-Mar-2020 21:42
Send private message quote this post

You probably have a CG-NAT connection.

 

EDIT: 30 pages of info here




20 posts

Geek


  #2444173 22-Mar-2020 21:48
Send private message quote this post

Jeepers, what the heck is CG-NAT (in laymans terms)?

 

What it prevent me pinging my router, or getting RDP working? Or both?


 
 
 
 


5808 posts

Uber Geek


  #2444174 22-Mar-2020 21:51
Send private message quote this post

Basically, you do not have a public IP address on the WAN interface of your router - it is shared with other 2D customers. Outgoing connections you'll never notice the difference, but incoming connections won't work.

 

https://en.wikipedia.org/wiki/Carrier-grade_NAT




20 posts

Geek


  #2444175 22-Mar-2020 21:54
Send private message quote this post

Well that's a bit lame! So no way to initiate incoming connections like RDP or webserver?

 

Fritzbox says I have a public IP in the Internet -> Online Monitor page:

 

IPv4 address: 100.68.78.22

 

How do I confirm if I do have CGNAT?


638 posts

Ultimate Geek

Subscriber

  #2444177 22-Mar-2020 22:01
Send private message quote this post

ccoutts:

 

Well that's a bit lame! So no way to initiate incoming connections like RDP or webserver?

 

Fritzbox says I have a public IP in the Internet -> Online Monitor page:

 

IPv4 address: 100.68.78.22

 

How do I confirm if I do have CGNAT?

 

 

the 100.x.x.x range is CG-NAT. 

 

When you get through to the support team, tell them your needs - they might give you a static ip for free (only guaranteed way to get a public IPV4 with 2deg now).  I think there are lots of instances if you look at that 30page thread.


'That VDSL Cat'
11937 posts

Uber Geek

Trusted
Spark
Subscriber

  #2444178 22-Mar-2020 22:01
Send private message quote this post

yes, your on CGNat, that IP address is within the 100.64.0.0/10 block.





#include <std_disclaimer>

 

Any comments made are personal opinion and do not reflect directly on the position my current or past employers may have.

 


116 posts

Master Geek


  #2444180 22-Mar-2020 22:01
Send private message quote this post

Check the settings. Respond to WAN ping could be disabled. Not sure what the defaults are.


 
 
 
 




20 posts

Geek


  #2444184 22-Mar-2020 22:08
Send private message quote this post

OK, thanks guys.

 

Pretty sh!t that they just changed me sometime recently with no communication, and years of being a customer of 2Deg and years of using RDP and webhosting.

 

Yes, I'll definitely kick up a fuss and request a static IP... if I can ever get through to their helpdesk.


BDFL - Memuneh
66448 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  #2444209 22-Mar-2020 22:47
Send private message quote this post

Unsolicited advice: make sure your machine is completely up-to-date with security patches as RDP is nasty. 





4563 posts

Uber Geek


  #2444286 23-Mar-2020 08:30
2 people support this post
Send private message quote this post

My RDP was hacked once, a few years back. 

 

Instead, I use VPN to establish a secure connection, then, use RDP across that secure connection.

 

 


BDFL - Memuneh
66448 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

  #2444287 23-Mar-2020 08:34
Send private message quote this post

The FritzBox even offer a VPN service. Just use that instead of exposing RDP ports to the Internet. Still need a static IP though.





28831 posts

Uber Geek

Moderator
Trusted
Biddle Corp
Lifetime subscriber

  #2444291 23-Mar-2020 08:46
2 people support this post
Send private message quote this post

You should *never* have RDP exposed to the Internet and be accessible. Period.

 

The great thing about the CG-NAT change is that it's going to remove a lot of poorly configured and exposed systems and hardware from the Internet. There are already fully exposed CCTV cameras that are no longer visible which is a great thing.




20 posts

Geek


  #2444312 23-Mar-2020 09:30
Send private message quote this post

Thanks for the advice guys. I'll probably have a go at the VPN technique.

 

Although, I have been using RDP for 10+ years with no (apparent) problems. I've change the RDP port on the win machine to something obscure, and limited numbers of login retries. But yeah, it's a Win7 machine, so needs to be end-of-life soon :-)


/dev/null
9173 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  #2444314 23-Mar-2020 09:33
Send private message quote this post

@ccoutts I am actually glad in this case it isn't working. Even if you limit logins etc you're still forwarding to a service on a unpatched, end of life operating system. You're just asking for trouble.

 

Why not just upgrade it to Windows 10?







20 posts

Geek


  #2444316 23-Mar-2020 09:35
Send private message quote this post

Cos I have 2 small kids, selling my house, and work is nuts. But yeah, it's on the list! :-)


Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Intel introduces 10th Gen Intel Core H-series for mobile devices
Posted 2-Apr-2020 21:09


COVID-19: new charitable initiative to fund remote monitoring for at-risk patients
Posted 2-Apr-2020 11:07


Huawei introduces the P40 Series of Android-based smartphones
Posted 31-Mar-2020 17:03


Samsung Galaxy Z Flip now available for pre-order in New Zealand
Posted 31-Mar-2020 16:39


New online learning platform for kids stuck at home during COVID-19 lockdown
Posted 26-Mar-2020 21:35


New 5G Nokia smartphone unveiled as portfolio expands
Posted 26-Mar-2020 17:11


D-Link ANZ launches wireless AC1200 4G LTE router
Posted 26-Mar-2020 16:32


Ring introduces two new video doorbells and new pre-roll technology
Posted 17-Mar-2020 16:59


OPPO uncovers flagship Find X2 Pro smartphone
Posted 17-Mar-2020 16:54


D-Link COVR-2202 mesh Wi-Fi system now protected by McAfee
Posted 17-Mar-2020 16:00


Spark Sport opens its platform up to all New Zealanders at no charge
Posted 17-Mar-2020 10:04


Spark launches 5G Starter Fund
Posted 8-Mar-2020 19:19


TRENDnet launches high-performance WiFi Mesh Router System
Posted 5-Mar-2020 08:48


Sony boosts full-frame lens line-up with introduction of FE 20mm F1.8 G large-aperture ultra-wide-angle prime Lens
Posted 5-Mar-2020 08:44


Vector and Spark teamed up on smart metering initiative
Posted 5-Mar-2020 08:42



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.