Ask a question
Search in Wireless Forums

Wireless Forum

Reply
Posted Jul 6, 2013
7:57:26 PM
View profile
Fios Actiontec Router Messing with my Microcell

First time tech savvy user who has been reading and trying all configuration and reboot permutations away. I have a problem though my  MI424 gen3/gige modem , despite a dmz and the most liberal port forwarding rules and firewall lowered as low as possible setup, I still get these blocked servces in my firewall security log 

Jul 6 22:51:44 2013 Inbound Traffic Blocked - Service First packet in connection is not a SYN packet: TCP 173.252.112.23:443->173.75.213.161:50472 on eth1 Jul 6 22:51:44 2013 Firewall Info Rate Limit 1 messages of type [65] First packet is Invalid suppressed in 1 second(s) Jul 6 22:51:44 2013 Firewall Info Rate Limit 1 messages of type [38] Wireless Broadband Router initiated traffic suppressed in 1 second(s) Jul 6 22:51:43 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 202.248.229.153:5222->192.168.1.2:35854 on eth1 Jul 6 22:51:43 2013 Firewall Info Rate Limit 4 messages of type [43] Service suppressed in 1 second(s) Jul 6 22:51:43 2013 Outbound Traffic Blocked - First packet is Invalid TCP 192.168.1.7:50442->184.72.189.192:443 on eth1




 

Jul 6 22:51:48 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 202.248.229.153:5222->192.168.1.2:35854 on eth1 Jul 6 22:51:47 2013 Outbound Traffic Blocked - First packet is Invalid TCP 192.168.1.7:50442->184.72.189.192:443 on eth1 Jul 6 22:51:47 2013 Outbound Traffic Accepted Traffic - Wireless Broadband Router initiated traffic UDP 173.75.213.161:1024->71.242.0.12:53 on eth1 Jul 6 22:51:47 2013 Firewall Info Rate Limit 3 messages of type [38] Wireless Broadband Router initiated traffic suppressed in 1 second(s) Jul 6 22:51:47 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 23.10.233.145:443->192.168.1.2:59383 on eth1 Jul 6 22:51:46 2013 Outbound Traffic Accepted Traffic - Default policy TCP 192.168.1.10:56697->202.248.229.150:443 on eth1 Jul 6 22:51:46 2013 Outbound Traffic Accepted Traffic - Wireless Broadband Router initiated traffic UDP 173.75.213.161:1024->71.242.0.12:53 on eth1 Jul 6 22:51:45 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 202.248.229.153:5222->192.168.1.2:35854 on eth1 Jul 6 22:51:55 2013 Outbound Traffic Blocked - Default policy First packet in connection is not a SYN packet: TCP 192.168.1.7:50457->23.20.230.240:80 on eth1




Also from what the CSR told me since my activation progress page hasn't even done the first step (powered up) she said it is most likely an internet problem.


All three lights solid. 3g blinking.

I'm a student renting from a couple in their house. I would appreciate this BIG TIME. Any advice?

First time tech savvy user who has been reading and trying all configuration and reboot permutations away. I have a problem though my  MI424 gen3/gige modem , despite a dmz and the most liberal port forwarding rules and firewall lowered as low as possible setup, I still get these blocked servces in my firewall security log 

Jul 6 22:51:44 2013 Inbound Traffic Blocked - Service First packet in connection is not a SYN packet: TCP 173.252.112.23:443->173.75.213.161:50472 on eth1 Jul 6 22:51:44 2013 Firewall Info Rate Limit 1 messages of type [65] First packet is Invalid suppressed in 1 second(s) Jul 6 22:51:44 2013 Firewall Info Rate Limit 1 messages of type [38] Wireless Broadband Router initiated traffic suppressed in 1 second(s) Jul 6 22:51:43 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 202.248.229.153:5222->192.168.1.2:35854 on eth1 Jul 6 22:51:43 2013 Firewall Info Rate Limit 4 messages of type [43] Service suppressed in 1 second(s) Jul 6 22:51:43 2013 Outbound Traffic Blocked - First packet is Invalid TCP 192.168.1.7:50442->184.72.189.192:443 on eth1




 

Jul 6 22:51:48 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 202.248.229.153:5222->192.168.1.2:35854 on eth1 Jul 6 22:51:47 2013 Outbound Traffic Blocked - First packet is Invalid TCP 192.168.1.7:50442->184.72.189.192:443 on eth1 Jul 6 22:51:47 2013 Outbound Traffic Accepted Traffic - Wireless Broadband Router initiated traffic UDP 173.75.213.161:1024->71.242.0.12:53 on eth1 Jul 6 22:51:47 2013 Firewall Info Rate Limit 3 messages of type [38] Wireless Broadband Router initiated traffic suppressed in 1 second(s) Jul 6 22:51:47 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 23.10.233.145:443->192.168.1.2:59383 on eth1 Jul 6 22:51:46 2013 Outbound Traffic Accepted Traffic - Default policy TCP 192.168.1.10:56697->202.248.229.150:443 on eth1 Jul 6 22:51:46 2013 Outbound Traffic Accepted Traffic - Wireless Broadband Router initiated traffic UDP 173.75.213.161:1024->71.242.0.12:53 on eth1 Jul 6 22:51:45 2013 Inbound Traffic Blocked - Service Destination Ports 4568-65535: TCP 202.248.229.153:5222->192.168.1.2:35854 on eth1 Jul 6 22:51:55 2013 Outbound Traffic Blocked - Default policy First packet in connection is not a SYN packet: TCP 192.168.1.7:50457->23.20.230.240:80 on eth1




Also from what the CSR told me since my activation progress page hasn't even done the first step (powered up) she said it is most likely an internet problem.


All three lights solid. 3g blinking.

I'm a student renting from a couple in their house. I would appreciate this BIG TIME. Any advice?

Fios Actiontec Router Messing with my Microcell

1,726 views
1 reply
(0) Me too
(0) Me too
Reply
View all replies
(1)
Highlighted
0
(0)
  • Rate this reply
View profile
Jul 7, 2013 10:18:45 AM
0
(0)
ACE - Master
Edited by OttoPylot on Jul 7, 2013 at 10:20:09 AM

A blinking green 3G indicates you don't have internet access (which you know). A blinkning red 3G light usually means a hardware failure or a reset that didn't complete correctly after an AT&T update.

 

You need to check with the ISP to make sure they aren't blocking any ports. Specifically 443 TCP (HTTPS over TLS/SSL),123 UDP (NTP timing),  4500 UDP (IPSec NAT traversal) and 500 UDP IPSec Phase 1). DHCP needs to be on on your router and IPSec Pass-through enabled. Block fragmented packets needs to be disabled and only one of the devices can be handling the NAT duties.

 

The MicroCell needs to be 18" away from a window with an unobstructed view of the sky. I also suggest placing the MicroCell horizontally to the window so that the side of it (as you are facing the front of the MicroCell) is facing the window The MicroCell should also be at least 2' away from any WiFi source.

 

Use the ethernet port on the MicroCell (not the Computer port) to connect it either directly to the modem/gateway (Priority Connection) or to the router. A priority connection by-passes the router which eliminates any configuration issues that the router may have and connects the MicroCell directly to the internet. It is usually reserved for trouble-shooting but some prefer to connect it that way.

 

The MicroCell is a totally closed system so you don't have access to the inner workings like you would a router.

 

If you are renting a room from someone, how are you getting your internet? Do they have another switch somewhere feeding you or do you have your own service independent from them?

 

You also need to make sure that you are the primary account holder for the MicroCell (your cell phone number is the same as the billing address) because initial activation requires that the GPS coordinates match the billing address.

 

___________________________________________________________

MicroCell Technical Guide by Otto Pylot


I am not an AT&T employee. For additional help, please send a PM to ATTCustomerCare

A blinking green 3G indicates you don't have internet access (which you know). A blinkning red 3G light usually means a hardware failure or a reset that didn't complete correctly after an AT&T update.

 

You need to check with the ISP to make sure they aren't blocking any ports. Specifically 443 TCP (HTTPS over TLS/SSL),123 UDP (NTP timing),  4500 UDP (IPSec NAT traversal) and 500 UDP IPSec Phase 1). DHCP needs to be on on your router and IPSec Pass-through enabled. Block fragmented packets needs to be disabled and only one of the devices can be handling the NAT duties.

 

The MicroCell needs to be 18" away from a window with an unobstructed view of the sky. I also suggest placing the MicroCell horizontally to the window so that the side of it (as you are facing the front of the MicroCell) is facing the window The MicroCell should also be at least 2' away from any WiFi source.

 

Use the ethernet port on the MicroCell (not the Computer port) to connect it either directly to the modem/gateway (Priority Connection) or to the router. A priority connection by-passes the router which eliminates any configuration issues that the router may have and connects the MicroCell directly to the internet. It is usually reserved for trouble-shooting but some prefer to connect it that way.

 

The MicroCell is a totally closed system so you don't have access to the inner workings like you would a router.

 

If you are renting a room from someone, how are you getting your internet? Do they have another switch somewhere feeding you or do you have your own service independent from them?

 

You also need to make sure that you are the primary account holder for the MicroCell (your cell phone number is the same as the billing address) because initial activation requires that the GPS coordinates match the billing address.

 

___________________________________________________________

MicroCell Technical Guide by Otto Pylot


I am not an AT&T employee. For additional help, please send a PM to ATTCustomerCare

*The views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.

Re: Fios Actiontec Router Messing with my Microcell

[ Edited ]
2 of 2 (1,668 Views)
Advanced
You must be signed in to add attachments
Share this post
Share this post