Your forum username:
Do you already have an account?
Forgot your password?
  • Log in or Sign up


    Welcome to Sky User - The Unofficial Support Forum for everything Sky! - Proudly helping over 65k members.


    Advertisement

    Results 1 to 4 of 4

    Now Hub Two - NR801 like ER115 - Default Open Ports?

    This is a discussion on Now Hub Two - NR801 like ER115 - Default Open Ports? within the Sky Broadband (Fibre) Help forums, part of the Sky Broadband help and support category; Hi, I hope I知 posting this in the right forum - I know I use Now Super Fibre, which is ...

    1. #1
      yzfr6's Avatar
      yzfr6 is offline Sky User Member
      Exchange: 01432
      Broadband ISP: Now Super Fibre
      Router: Now Hub Two (NR801) same as ER115
      Sky TV: Sky Basic
      Join Date
      Feb 2019
      Posts
      2
      Thanks
      0
      Thanked 0 Times in 0 Posts

      Now Hub Two - NR801 like ER115 - Default Open Ports?

      Hi,

      I hope I知 posting this in the right forum - I know I use Now Super Fibre, which is (as far as I知 aware) re-badged Sky VDSL.

      Apologies for the lengthy post, but I wanted to get as much information in as possible.
      Does anyone know if any ports are defaulted to be open (even if stealthed) on the Hub Two device? (model NR801) on the WAN side?
      Could someone run a port scan and report back on what they see?
      I have not changed any software on the device and without changing anything from how it is being set by the firmware at boot up, here痴 what I have:
      From the LAN side, the following ports are open:
      53 for DNS (ok)
      80 for the web config GUI (ok)
      30005 unknown service (what is this?)
      Running a port scan against the public IP of the router when not on the LAN, the following ports are open:
      25 SMTP (stealth)
      80 HTTP (stealth)
      443 HTTPS (stealth)
      30005 unknown service (Open)
      Whilst ports 25, 80 and 443 are stealthed, they still respond, there is a service behind them.
      Port 30005 is the biggest concern as it goes straight through from the WAN onto the LAN.
      I have completed a factory reset, both from the GUI and by holding the reset button down for 45 seconds. These ports are opened immediately. I have upnp turned off and there are no ports listed in the table.
      Using the built in firewall, I used the the inbound services to try to block the port, but of course they stay open on the WAN side. I set to log and see this:
      Feb 2 21:00:07 syslog: [ 1919.842000] always->SMTPIN=ptm0.1 OUT= MAC=[MAC ADDRESS OF WLAN] a0:f3:e4:47:ee:30:08:00:45:00:00:3c:6d:26:40:00:38 :06:89:73:b9:45:91:fd src=185.69.145.253 DST=[PUBLIC IP OF ROUTER] LEN=60 TOS=0x00 PREC=0x00 TTL=56 ID
      Heres what I have on the Maintenance > Router Status page:
      Manufacturer Sky
      Model NR801
      Firmware Version 1.00.2182.R
      DSL Firmware VersionA2pv6F039m1.d24m

      I called support, they will send me a new router, but I知 interested to find out if this is the norm?

      Thanks!



    2. Advertisement
    3. #2
      speedyrite's Avatar
      speedyrite is offline Sky User Member
      Exchange: MYHGT
      Broadband ISP: NOW Broadband
      Router: NOW TV Hub Two
      Sky TV: NOW TV
      Join Date
      Sep 2006
      Posts
      2,315
      Thanks
      358
      Thanked 157 Times in 151 Posts
      Blog Entries
      1

      Re: Now Hub Two - NR801 like ER115 - Default Open Ports?

      It's my understanding that port 30005 is open on Sky/NOW TV Hubs to allow router firmware updates from Sky using the TR069 remote management protocol.
      ++ speedyrite ... powered by NOW Broadband from June 2018 ++
      (previously powered by Sky Broadband from July 2007)

    4. #3
      yzfr6's Avatar
      yzfr6 is offline Sky User Member
      Exchange: 01432
      Broadband ISP: Now Super Fibre
      Router: Now Hub Two (NR801) same as ER115
      Sky TV: Sky Basic
      Join Date
      Feb 2019
      Posts
      2
      Thanks
      0
      Thanked 0 Times in 0 Posts

      Re: Now Hub Two - NR801 like ER115 - Default Open Ports?

      Quote Originally Posted by speedyrite View Post
      It's my understanding that port 30005 is open on Sky/NOW TV Hubs to allow router firmware updates from Sky using the TR069 remote management protocol.
      Hi Speedyrite,

      Thanks for your reply!

      OK, it makes sense that they need a way of updating firmware over the internet, I dont understand why the port is open on the local network side.

      It痴 a straight hole right from the internet onto the local network, which is a risk.

      I have been unable to block port 30005 on either side using the built in firewall, did you try and have any success?

      Do you also have ports 25, 80 and 443 open on the WAN/internet side?

      Thanks

    5. #4
      speedyrite's Avatar
      speedyrite is offline Sky User Member
      Exchange: MYHGT
      Broadband ISP: NOW Broadband
      Router: NOW TV Hub Two
      Sky TV: NOW TV
      Join Date
      Sep 2006
      Posts
      2,315
      Thanks
      358
      Thanked 157 Times in 151 Posts
      Blog Entries
      1

      Re: Now Hub Two - NR801 like ER115 - Default Open Ports?

      Ports 25, 80 and 443: Probably open. Haven't specifically blocked them. I did a "ShieldsUP!" test and here's the result...

      GRC Port Authority Report created on UTC: 2019-02-05 at 09:23:23

      Results from scan of ports: 0, 21-23, 25, 79, 80, 110, 113,
      119, 135, 139, 143, 389, 443, 445,
      1002, 1024-1030, 1720, 5000

      0 Ports Open
      0 Ports Closed
      26 Ports Stealth
      ---------------------
      26 Ports Tested

      ALL PORTS tested were found to be: STEALTH.

      TruStealth: PASSED - ALL tested ports were STEALTH,
      - NO unsolicited packets were received,
      - NO Ping reply (ICMP Echo) was received.

      Port 30005: Haven't tried blocking it. I did a "ShieldsUP!" test and here's the result...


      GRC Port Authority Report created on UTC: 2019-02-05 at 09:25:00

      Results from probe of port: 30005

      1 Ports Open
      0 Ports Closed
      0 Ports Stealth
      ---------------------
      1 Ports Tested

      THE PORT tested was found to be: OPEN.

      TruStealth: FAILED - NOT all tested ports were STEALTH,
      - NO unsolicited packets were received,
      - NO Ping reply (ICMP Echo) was received.


      So, port 30005 is open. I can see why it might be open on the WAN/internet side - to provide access for firmware update, but I tend to agree with you that I don't know why it needs to be open for access to the LAN side.
      ++ speedyrite ... powered by NOW Broadband from June 2018 ++
      (previously powered by Sky Broadband from July 2007)

     

     

    Tags for this Thread

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •  
    SkyUser - Copyright © 2006-2017. SatDish and NewsreadeR | SkyUser is in no way affiliated with Sky Broadband / BSkyB
    RIPA NOTICE: NO CONSENT IS GIVEN FOR INTERCEPTION OF PAGE TRANSMISSION