User Profile
Dhawk2k
Friendly Neighbour
Joined 12 months ago
User Widgets
Contributions
Port Forwarding being blocked - evidence
Ok guys, I am back with a new set of interesting problem. A while back, my TELUS NH-20A modem was rebooted remotely and I was moved into a CGNAT environment. It was not too bad except the following: 1. Lost the ability to access my home network from outside the LAN. 2. ANd more importantly, my speed dropped and constantly getting disconnected. I was replaced with an NH-20T which did not solve the problem until the field tech allowed me to speak with the agent ont he line whom erased my profile and recreated a new one and cleaned up my line. 1. My NH-20T got a 99.X.X.X Ip address and matched what is being seen outside via whatismyip. 2. I configured the NH-20T port 1 to bridge mode and connected my own PFSense router. I got a WAN Ip address starting with 205.X.X.X. I confirm I am not on CGNAT and port forwarding works. So here is my interesting problem. 1. I got a spare PFSense unit and configured it exactly as my first PFSense unit (DHCP and Port Forwarding). Nothign fancy. 2. The new PFSense unit got a WAN IP starting with 99.X.X.X. 3. I confirm I am not on CGNAT via whatismyip (what is seen outside and what is allocated to my router matches). 4. I confirm my ports are being detected as "open". 5. BUT no traffic is getting through PORT FORWARDING at all. So what is my proof that the 99.x.x.x WAN port forwarding is being blocked? ANS: I spoofed my original PFSense unit MAC address to my new unit and port forwarding immediately worked after getting the 205.X.X.X IP address. Because of this, I am preparing tailscale as my main means of connection if and when TELUS suddenly bump me back to CGNAT or to the 99.x.x.x range. SO anyone with this 99.x.x.x IP range, please let me know if you are having port forwarding issues? I am very curious about it.527Views0likes0CommentsRe: As of January 8th, Telus move me behind CGNAT, and disabled BRIDGE function
For me, they upgraded me to Fibre 150 which helped a bit but was still getting disconnects every few hours. SO I requested to change my NOKIA ONT and Telus Hub to the newer Arcadyan NH20A with builtin ONT. They added a Booster 6 as well. They struggled to provision my land line - whatever that means and after the tech on site called the back end... they did something and rebooted the landline 2 times and I got my voice line back. At the same time, I discovered I was out of CGNAT... Hope this works for you... I use Telus for the Stream+ Internet and Home security...(and Landline). I just ported my landline to Freedom - so in the future, any decisions to change service providers will be easier...2.8KViews0likes0CommentsRe: As of January 8th, Telus move me behind CGNAT, and disabled BRIDGE function
Thanks for the feedback... My issue got resolved going this: 1. They upgraded me to Telus Fibre 150. I am still under Telus CGNAT but not disconnecting anymore. Although some pages takes longer or I get an error that the page will not load until I refresh again. 2. They came over and changed my Telus Wifi Hub and Nokia ONT to the newer NH20A integrated ONT and modem. They also installed a Booster 6 as the NH20A does not have wifi. 3. Initially I noticed I am still under Telus CGNAT. But during the phone migration "provisioning", they encountered some back end difficulties. Took them half an hour to get my land land reactivated. 4. Rebooted the NH20A and voila, I noticed I am no longer in Telus CGNAT. So far no disconnects or slow downs. 5. I enabled bridge mode on port 1 and installed my own router. The Telus WIFI boost 6 is in the 10GB port. Nothing changed in my setup and working fine... What a long week! Thanks!!!3.2KViews0likes0CommentsRe: As of January 8th, Telus move me behind CGNAT, and disabled BRIDGE function
UPDATE: After 2 days, I am still un CGNAT. I spoke with numerous customer support agents and they had second-level tier "clear" my IP and it works again. Here is additional pattern I observed. My setup is NOKIA ONT-TELUS WIFIHUB-PFSENSE on bridge port 1 of TELUS. If I connect my device on TELUS network and use it heavily, I will eventually lose ability to make new Internet connections (while existing connections to youtube works albeit slowly). BUT device connection to my PFSense would still work fine. The reverse is true, if I use connections through PFSense heavily and my connection dies, device connections through Telus WiFi Hub still works. So I called technical support after reading on reddit someone stated to mention "double-nat error" and "QOS Profile " to the agent will result in being transferred out of CGNAT. I tried this and no luck. They still kept me in CGNAT. The next suggestion in reddit is to upgrade my subscription to FIBRE 250 and request newer equipment. Supposedly the redditor got his problems resolved. I can live with CGNAT but not losing connection 15-20 times a day... I really believe there is something wrong on the Telus side of things or even possibly my ONT or WIFI HUB is dying (which is doubtful). I will call Customer Care and ask for a provisional upgrade to 250 and newer modem to see if this will solve my problem...2.9KViews0likes1CommentAs of January 8th, Telus move me behind CGNAT, and disabled BRIDGE function
Okay, long story short. I have a Arcadyan Telus Wifi Hub connected to a NOKIA ONT. I have the Telus Wifi Hub on bridge mode for port 1. I have PFSense WAN port connected to Telus Wifi Hub Port 1 (bridged). This has been working great the past few years. I have port forwarding working on my own PFSense router. On January 8th 2AM Pacific Time, my Internet stopped working and glitched. I rebooted the Telus Wifi Hub, Nokia ONT, and my PFSense and went to sleep. My Telus Wifi Hub kept loosing Internet connection. I had to call Telus support and they "cleared" my Telus Wifi Hub MAC/IP Address and I can surf through the Telus Hub. My PFSense Router can surf but after 20 min or so, I would loose Internet connection. I swapped out my PFSense with a similar PFSense and same behavior. I swapped the 2nd PFSense with am Asus Wifi Router and it will function for roughly 20 min before loosing connection. Telus Tech representative said Telus do not support bridging and port forwarding. By chance I did a whatismyip look up through the Telus HUB and determined the assigned WAN IP and publicly listed IP address do not match. This leads me to believe I was transferred to a CGNAT setup. When I enable Port Forwarding in Telus HUB, I obviously cannot see myself or any open ports. As I used to have bridging and port forwarding working fine for a while, I believe this is a problem at Telus side. I will request for a direct WAN IP accessible from the outside world. Then test Port Forwarding. But 3rd party routers would work and fail a few minutes later when connected to bridged port 1 of Telus Wifi Hub. When my 3rd party router works, I determined the assigned Telus WAN and publicly identified IP are also different. SO in summary: I think Telus are moving people behind CGNAT so no port warding or DMW would work. I also think that Telus is checking the MAC address and if not identified as Telus equipment, they would block it. I will call Tech Support again and ask them these questions. If they cannot resolve it, I will move to another provider. How is Shaw / Rogers? BTW, I need a publicly accessible WAN to monitor a diabetic senior and kids with Autism.Solved3.4KViews0likes5Comments