Earbuds, cases, wireless speakers, and the latest devices. We've got the season's hottest gifts!
Need help with your equipment?
joechap's profile

Teacher

 • 

4 Messages

Sun, Jul 23, 2017 6:30 AM

Bridge mode or equivalent for 5286AC (need SMTP 25 & all other ports open)

Apparently I made the mistake of believing what the AT&T people I spoke with and typed with told me: 'we don't block any ports.'

I specifically asked about port 25 and was told it was not blocked.

 

I ran my domain and mail server off a Comcast business account for over several years and had no problems contact support and getting PTR records changed with a single phone call. I come to AT&T and it takes two phone calls and an hour to find out what my static IPs but then had to be transferred to connectech to get support to actually be able to use them as the 5286AC router (er., 'residential gateway') isn't setup to do that and the support person is not capable of doing this.

 

So, after trolling various forums I figured out how to use the first IP in the range successfully but then I find that port 25 out is blocked. *sigh*

 

I literally had this AT&T Fiber service turned on today and I have no problem going right back to Comcast if this is the kind of bovine stuff I'm going to have to deal with.

 

So, to the point. What do I want?

  1. Why can't I just plug my own router in to the ONT? AT&T provides the network and I provide the CPE. Give me a working ethernet connection and the IP information and I'll handle the rest. I don't need a managed... anything. I'll sign a waiver.
  2. If I can't plug my own router in to the ONT, make your own device between it and my router pass all IP traffic transparently. I don't know how to state this any more simply. I want a bridge. I want a layer 2 device that isn't going to sniff, snoop, massage or otherwise do anything to any IP packet inside the ethernet frame from the time they leave my router to the time they get to the next layer 3 hop. I don't want any help with filtering, firewalling, or otherwise 'keeping me safe.'
  3. Disable all blocking of any ports (okay, if you really want to block port 0, fine).
  4. Give me a support system that works.  Calling, getting disconnected, & 30+ minute hold times doesn't work. Once I reach support, they should be able to quickly identify whether or not they are equipped to handle my problem and if they can't to escalate it to the correct people, and quickly. Also, I should be able to get support through the standard tools without having to post messages on forums hoping that an employee will help in an unofficial capacity or by 'yelling' on twitter (as making social media rants seems to be the most effective way to get a company's attention.)
ApexRon

Professor

 • 

2.2K Messages

5 years ago

@joechap


@joechap wrote:

 

 

  1. Why can't I just plug my own router in to the ONT? AT&T provides the network and I provide the CPE. Give me a working ethernet connection and the IP information and I'll handle the rest. I don't need a managed... anything. I'll sign a waiver. Three primary reasons: 1) Customer provided equipment was creating a servicing nightmare for AT&T as most had no clue as to what they were plugging in. 2) Because of customer naivety, providing a open pipe to the internet could create havoc with the AT&T network as well as the internet. 3) AT&T uses IBGP to support their IPTV.
  2. If I can't plug my own router in to the ONT, make your own device between it and my router pass all IP traffic transparently. I don't know how to state this any more simply. I want a bridge. I want a layer 2 device that isn't going to sniff, snoop, massage or otherwise do anything to any IP packet inside the ethernet frame from the time they leave my router to the time they get to the next layer 3 hop. I don't want any help with filtering, firewalling, or otherwise 'keeping me safe.' There are definitely issues associated with the firewall implemented on the AT&T provided router/gateway. Additionally, I believe there is some blocking at their first hop router but I don't know for sure.
  3. Disable all blocking of any ports (okay, if you really want to block port 0, fine). AT&T would rather risk losing you as a customer rather than risk your jeopardizing the security and performance of the AT&T network.
  4. Give me a support system that works.  Calling, getting disconnected, & 30+ minute hold times doesn't work. Once I reach support, they should be able to quickly identify whether or not they are equipped to handle my problem and if they can't to escalate it to the correct people, and quickly. Also, I should be able to get support through the standard tools without having to post messages on forums hoping that an employee will help in an unofficial capacity or by 'yelling' on twitter (as making social media rants seems to be the most effective way to get a company's attention.) Known issue with all ISPs. Too many customers that haven't taken Troubleshooting 101 and attempt to install network products as if they were light bulbs.

Here are three recommendations to circumvent AT&T provided router/gateway flaws:

  1. Disable IPv6 on your AT&T provided router/gateway - IPv6 is enabled by default and can cause a slow network and other communication issues
  2. Change the Ethernet port configuration for each port you are using on your AT&T provided router/gateway from Auto-detect to 100BaseT/Full Duplex - This will eliminate auto-negotiation incompatibilities
  3. Use Google DNS (8.8.8.8 and 8.8.4.4) on your PCs, laptops, tablets, and so on but retain DHCP

Teacher

 • 

4 Messages

5 years ago

  1. Well, as much as I don't like having to come up with workarounds on vendor flawed software that causes significant problems, this actually works in my favor as my preference is to not even use the thing.
  2. I'm not currently having any PHY interface problems [yet] but forewarned is forearmed.
  3. I've been using OpenDNS (pre and post Cisco acquisition) so I think I'm good on that front.

Thanks for the advice. Too bad it doesn't address my concerns. Reading between the lines, it tells me that a) I'm not alone and b) there's little hope other than to go back to Comcast. That's really too bad because, at least outside of residential, I've worked with so many good folks at AT&T in the past that it's a shame that it's so fowled-up on the residential side.

ATTHelp

Community Support

 • 

203.8K Messages

5 years ago

Hello @joechap!


Thank you very much for the information you have provided so far regarding this matter! I would love to assist with getting this issue resolved for you.


If you could please send us a private message to @ATTCares indicating whether you have DSL or UVerse services with us; we will be able to further look into this problem for you.


Thank you in advance for this information, and I look forward to speaking with you again!


Jordan, AT&T Community Specialist

ATTHelp

Community Support

 • 

203.8K Messages

5 years ago

Hi there @joechap,


Thank you for bringing this to our concern. We know the amount of time you have taken to reach out to us to get this resolved. Our goal is to provide our customers with a resolution during the first interaction and I do apologize this is not the case.


Your time is absolutely important to us and we would like to thank you for your patience. This is something we definitely want to get taken care of. I have escalated this issue to the proper channels. Our team will be working together to provide a resolution. Once we have a solution, we will be reaching out. 


I hope you have an amazing rest of your day! 


Vanessa, AT&T Community Specialist 



Teacher

 • 

4 Messages

5 years ago

I finally got a solution but not after first being directed to and [still] trying to be billed for the managed service remote support thing (I don't need support with my computer — the 'problem' was never on my end.)

Not finding what you're looking for?
New to AT&T Community?
New to the AT&T Community? Start by visiting the Community How-To.
New to the AT&T Community?
Visit the Community How-To.