Plusnet Firewall won't stay off
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Broadband
- :
- Plusnet Firewall won't stay off
Re: Plusnet Firewall won't stay off
12-12-2014 9:17 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: mcoops82 it sounds like it might be something to do with my router DNS settings.
No what is being suggested, is that some routers have a known DNS vulnerability where an external attacker can change the router's DNS behavior, so that when you go to browse web pages on your PC, instead of viewing what you expected (perhaps online banking, or internet shopping) you are instead redirected to a clone of those websites, where your keystrokes, passwords, credit card info, etc can be copied without you knowing. The Plusnet networks team have observed on your connection, the pattern of behavior that is associated with DNS compromised routers, and have (for your own safety) enabled the broadband firewall just enough to prevent external attackers having control of your router.
If that happened to me, I would always have the Broadband Firewall on, immediately install the latest version of firmware for the router (which should include patches for the latest security vulnerabilities), clear the router non-volatile memory back to default (to remove any hacked settings), then manually re-enter all the required settings to get back online.
I would also go to the "Gibson Research" website, and run the "ShieldsUp!" tests for "UPnP exposure" and "All Service Ports" to check for router vulnerabilities.
Re: Plusnet Firewall won't stay off
12-12-2014 9:46 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: purleigh The Plusnet networks team have observed on your connection, the pattern of behavior that is associated with DNS compromised routers, and have (for your own safety) enabled the broadband firewall just enough to prevent external attackers having control of your router.
How on earth did you deduce that? The email says no such thing!
jelv (a.k.a Spoon Whittler) Why I have left Plusnet (warning: long post!) Broadband: Andrews & Arnold Home::1 (FTTC 80/20) Line rental: Pulse 8 Home Line Rental (£14.40/month) Mobile: iD mobile (£4/month) |
Re: Plusnet Firewall won't stay off
12-12-2014 9:51 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Plusnet Firewall won't stay off
12-12-2014 9:51 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: Chris your firewall isn't just randomly turning on, it's being done quite deliberately by our networks team. It's likely they've spotted something untoward on your connection
This was discussed previously on this forum, but I can't be bothered to find specific references, so my simplified summary (in Reply #30 ) was from memory.
I would be happy if Chris Pettitt or Chris Parr would care to confirm or deny whether my summary was broadly correct or not.
Re: Plusnet Firewall won't stay off
12-12-2014 10:01 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Read Chris Parr's post again, reply #20. And even if purleigh's deduction isn't a sequitur, the rest of his comments and suggestions are correct and sound. At the end of the day, is it really relevant? We've concluded it's best to have the Firewall on.
@mcoops82
Some further advice for you. As you are on a rural connection and will likely suffer some noise pick up after dark due to MW/AM propagation, even if we get it reduced, avoid resyncing after dark. In fact to be precise, avoid resyncing if your SNRM is below 6dB, ideally above 6.3dB. Typically avoid resyncing less than hour before sunset or less than an hour after dawn, but go by the SNRM value which needs to be stable at the time.
Edit: can you post some daytime stats tomorrow, ideally around the middle of the day.
Re: Plusnet Firewall won't stay off
12-12-2014 10:26 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
As for the cabling, it comes in high up in to the loft space and down. It's as you describe, about 5mm diameter and black. Not sure about the cross section without getting the master socket open. I'm also not sure if there's a junction box but I'm guessing there is and it's probably up in the loft space - I've never had cause to mess around with it and I remember reading that anything beyond the master socket is property of BT. I want to say that the cabling and sockets were last replaced in 1999.
I don't really ever actively resync my connection these days (unless the internet feels really unusually sluggish or something - pretty rare) but I'll certainly keep your advice regarding time of day in mind, thanks. I will post some daytime stats tomorrow, no problem.
@purleigh: I remember visiting that GRC website recently and I just ran the tests again. The exposure test is a pass, File sharing test passes and although the Ports tests say failed I don't really understand why as none of them are 'Open'. A little over half are 'Closed' and the rest are 'Stealth'. Ideally they should all be stealth I guess?
Re: Plusnet Firewall won't stay off
12-12-2014 10:39 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: mcoops82 A little over half are 'Closed' and the rest are 'Stealth'. Ideally they should all be stealth I guess?
Yes, they should all be stealth.
Read through the advice after the test results, to see whether you can improve your router's stealth rating.
Here is the result for my router -
I particularly like that my router didn't respond to 'Ping' requests during this port probing test, despite my router simultaneously responding to 'Pings' from other allowed sources including ThinkBroadband quality monitors, HE IPv6 tunnelbroker, IPv6-test : pingtest, and pingtest.net
Re: Plusnet Firewall won't stay off
12-12-2014 10:43 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Plusnet Firewall won't stay off
12-12-2014 11:02 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
If you Master socket doesn't look like one of those on the previous link I gave you, does it look like one of these
Re: Plusnet Firewall won't stay off
13-12-2014 12:16 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Downstream Upstream
SNR Margin
:
6.0 23.0 db
Line Attenuation
:
33.0 18.5 db
Data Rate
:
6848 448 kbps
Max Rate
:
7072 1164 kbps
POWER
:
20.0 12.0 dbm
CRC
:
7 0
I don't know if it is relevant but keep in mind I am no longer connected to the master socket and am now hard wired with an ethernet cable instead of a wireless connection. BT wholesale speedtest still will not produce 'Further Diagnostics' and Plusnet firewall remains off (I just checked).
Re: Plusnet Firewall won't stay off
13-12-2014 12:22 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
If the wires 2 and 5 came off the removable faceplate and you didn't connect them again then no other sockets in the property should work
So either it isn't actually the master socket or there wasn't a removable faceplate or the internal wiring is screwed up or it is star wired from a junction box somewhere
I am sure anotherone can comment further once we see your pics
Re: Plusnet Firewall won't stay off
13-12-2014 1:21 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
http://imgur.com/OqDGDhG - Master socket after the wires popped off
http://imgur.com/ZzFA8eD - Close up of the blackened orange connection
Only last night I was looking in to the possibility of upgrading the master socket to an NTE5 socket. I suppose I should call BT first and find out what the damage would be to have an engineer come out.
This thread seems to have become less about firewalls and more about scavenging tech advice on how to improve my home phone and broadband setup - sorry about that.
Re: Plusnet Firewall won't stay off
13-12-2014 1:37 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Plusnet Firewall won't stay off
13-12-2014 2:18 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Although that is a master socket - it has a large ring capacitor - it certainly isn't a true master socket as otherwise the slave sockets would run off it so it may be that your system is star wired and hence there must be a splitter box somewhere and it doesn't look as though the one on the wall is it
Is it possible to check what is in the roof space
Re: Plusnet Firewall won't stay off
13-12-2014 2:54 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
It has always been my understanding that the presence of the large capacitor denoted that it was the master socket, albeit an older style socket. Either way, it seems it may have finally reached retirement age so now would seem as good a time as any to look in to what options I have in terms of replacement. Whatever that socket technically is called, it is the only one of the four phone sockets in our house which has the black cable coming in. All of the other sockets have a thinner diameter white cable.
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Help with my Plusnet services
- :
- Broadband
- :
- Plusnet Firewall won't stay off