> Does Comcast actually allow customers who own their own modems full
> management of the modem firmware? As far as I have been aware since my time
> at Adelphia 20-odd years ago, that has never been allowed by provider; all
> users of a given model had the same firmware enforced, customer
On 9/16/21 08:13, Tom Beecher wrote:
Does Comcast actually allow customers who own their own modems full
management of the modem firmware? As far as I have been aware since my
time at Adelphia 20-odd years ago, that has never been allowed by
provider; all users of a given model had the same
Jason-
I have a sidebar question here.
I came across the AQM paper you and others recently published. (
https://arxiv.org/pdf/2107.13968.pdf ) In that paper, the following is
stated :
When a customer purchases their own cable modem, they are responsible for
> administering it, updating the
On 9/13/21, 12:02, "Owen DeLong" wrote:
> Yes, but it’s tragically opt-out instead of opt-in as it should be.
It is not a default for an Internet access service. It comes bundled as one of
several features in an optional add on service. See
> On Sep 13, 2021, at 07:56 , Livingood, Jason via NANOG
> wrote:
>
> On 9/10/21, 10:58, "NANOG on behalf of Chris Boyd"
> cb...@gizmopartners.com> wrote:
>
>> Why is Comcast blocking things? That seems like it’s out of scope for an ISP.
>
> For Internet access, sure. But ISPs also have
11:10
To: Jim Popovitch
Cc: NANOG
Subject: Re: Xfi Advances Security (comcast)
This is an SSL VPN that is being blocked. This is what failure looks like. Curl
is the same.
Once we disable the Xfi Advanced Security everyone can connect.
[cid:ii_ktehov470]
On Fri, Sep 10, 2021 at 11:01
On 9/10/21, 10:58, "NANOG on behalf of Chris Boyd"
wrote:
> Why is Comcast blocking things? That seems like it’s out of scope for an ISP.
For Internet access, sure. But ISPs also have value added protection services
and this part of an optional content filtering service that is integrated
ject: Xfi Advances Security (comcast)
For whatever reason Comcast Xfinity is blocking my VPN URL. I've started the
process to unblock, and I'm trying to get a hold of their security team to
resolve this. I've been bounced around all morning.
Does anyone have a contact at Comcast that can white
We ran into this same issue for the first time yesterday too. Xfi Advanced
Security started blocking our websockets endpoint,
websocket.carsandbids.com/carsandbids. Our logs just showed a couple users
failing to make the connection. We never would have figured it out except that
one of our
Yes, I own my own modem even though comcast now charges me $5/month more than
if I rented their equipment for this privilege.
Owen
> On Sep 10, 2021, at 15:49 , Eric Kuhnke wrote:
>
> Ideally being your own customer owned cable modem that meets specs (Comcast
> does allow this in some
Ideally being your own customer owned cable modem that meets specs (Comcast
does allow this in some regions) that will function as a layer 2 bridge.
On Fri, Sep 10, 2021, 1:46 PM Owen DeLong wrote:
> First thing I do with any cable modem is convert it to bridge mode.
>
> The fewer “smarts” in
First thing I do with any cable modem is convert it to bridge mode.
The fewer “smarts” in the cable modem doing odd things to my traffic, the
better.
Owen
> On Sep 10, 2021, at 10:40 , Eric Kuhnke wrote:
>
> I know this is not a solution to your problem, but I have found myself more
>
I know this is not a solution to your problem, but I have found myself more
often running the public interface of openvpn systems on port 443. Any
sufficiently advanced DPI setup will be able to tell that it's not quite
normal https traffic.
But 99% of the time it seems to serve the purpose of
Could it be related to the many FortiNet devices being exploited? About 45k
credentials were dumped two days ago. Many are still working.
On Fri, Sep 10, 2021 at 10:56 AM Chris Boyd wrote:
>
>
> > On Sep 10, 2021, at 9:31 AM, Jason Kuehl
> wrote:
> >
> > For whatever reason Comcast Xfinity is
This is an SSL VPN that is being blocked. This is what failure looks like.
Curl is the same.
Once we disable the Xfi Advanced Security everyone can connect.
[image: image.png]
On Fri, Sep 10, 2021 at 11:01 AM Jim Popovitch via NANOG
wrote:
> On Fri, 2021-09-10 at 10:31 -0400, Jason Kuehl
By default, the cable modems from Comcast have Xfi Advanced
security-enabled which is a layer 3 URL blocker.
We can access our URL via that IP fine, but the URL fails.
The fix we're telling users is to 1st allow to unblock the URL in the APP,
then disable the service. Which does fix the issue.
On Fri, 2021-09-10 at 10:31 -0400, Jason Kuehl wrote:
> For whatever reason Comcast Xfinity is blocking my VPN URL.
Not certain that this applies, but Concast Advanced Security (setup in
your Comcast gateway) only allows outbound VPN connections to UDP ports
500, 4500, and 62515 and TCP port
> On Sep 10, 2021, at 9:31 AM, Jason Kuehl wrote:
>
> For whatever reason Comcast Xfinity is blocking my VPN URL. I've started the
> process to unblock, and I'm trying to get a hold of their security team to
> resolve this. I've been bounced around all morning.
>
> Does anyone have a
For whatever reason Comcast Xfinity is blocking my VPN URL. I've started
the process to unblock, and I'm trying to get a hold of their security team
to resolve this. I've been bounced around all morning.
Does anyone have a contact at Comcast that can whitelist a URL or get me to
a team that can
19 matches
Mail list logo
