Here's a list of blocked ports and protocols by our local ISPs. Just in case you're wondering why you can't SSH back to your router.

Please report any blocked ports/protocols and I'll update the list. Do some tests first to be sure.

If you're not sure. For example, if you cannot ftp from Maxis to UniFi, port 21 may be blocked by either or both of them. Just mention that and I or someone else can check.

Also let me know if there're any mistakes or changes. Sometimes blocked ports become unblocked temporarily. Like during the last major outage for UniFi, normally blocked ports were no longer blocked probably due to TM's re-routing exercise.

UniFi

Port 22	SSH	Partial
Port 23	Telnet	Partial
Port 25	SMTP

*Partial: The blocks are not on all subnets. Hmmm, some routers/firewalls not configured.

Maxis Broadband

Maxis Mobile

Protocol 47

GRE (e.g.: for PPtP VPN)

TIME

Others

This post has been edited by soonwai: Mar 2 2017, 01:44 PM

why some ports might be blocked?

Probably to prevent "hackers" from trying to brute force routers or servers. If you check the log, you'd be surprised at how many attempts are made on your own router everyday.

Here's an example from one of my routers taken just a few mins ago.


This post has been edited by soonwai: Mar 2 2017, 01:38 PM

wow. just few minutes already almost 30 records

whole day might reach hundreds or thousands

Yeah, I know, scary right? And most routers have default username like admin so the bad guys only have to guess the password. i.e.: single factor authentication (1FA)
That's why I tell my friends, if your router allows it, change the username also. Instantly you have 2FA authentication.

you can disable the service or add access list to prevent this.

Wah so much

DNS Amplification attack even worse. You don't see anything in your logs. Just lots of outgoing traffic from your router to the target.
See here: https://forum.lowyat.net/topic/3860279

TM: Unifi, Streamyx port 6667 tcp/udp is block, many online game use this port, eg: EA games

UNIFI blocked 445 and 4444, do update ya

that sucks, This very reasons I use Maxis Fiber

does tmnut block 443?

No.

thx.

then i'm confused then. i was trying to get netgear insight cloud to work, so i thought ok, i have to port forward 443. but that didn't work, so this is why i thought maybe the isp blocked.

but since it's not now i'm out of ideas
https://kb.netgear.com/000062467/Which-doma...Managed-devices


How to Set Up Port Forwarding in pfSense Software
https://www.youtube.com/watch?v=iFAuK_m7JxE



This post has been edited by Moogle Stiltzkin: Mar 10 2023, 02:42 PM

these should be outbound, are they blocked at your DNS level by Pfblocker?

Celcom, test with netcat to/from GCP instance in SG.





Only port 25 blocked.

I don’t think TM intentionally wants to block the games. TCP 6667 is the old default IRC port. Probably it’s a holdover from the old days when everyone was pirating via IRC.

could be
https://community.netgear.com/t5/NETGEAR-In...ce/td-p/1683183


but i did however spin up asus router and factory reset (no pfblocker, no complicated settings/setup). only setting i did was isp and enable upnp. still didn't work.

could it be because of this?
https://www.malaysiatrend.com/2021/10/15/tm...-it-impacts-you

https://forum.lowyat.net/topic/5205674/+400

This post has been edited by Moogle Stiltzkin: Mar 15 2023, 04:05 AM