 NetFixerFreedom is NOT freePremium
join:2004-06-24
The 'Boro
 ·Vonage
 ·Cingular Wireless
 ·Comcast
 ·AT&T Southeast
| Does your firewall allow you to limit the opened ports to only the IP address and/or MAC address used by the Vonage adapter's WAN interface?
Even if you monitored your firewall for connections from/to the Vonage adapter, there is no guarantee that the IP address(es) used by the Vonage servers might not change.
FWIW, shown below are the syslog entries showing a Vonage adapter being rebooted twice (I wanted to see if the IP addresses might change), followed by a brief outgoing call. The IP address 192.168.9.11 belongs to my Vonage VT2442 adapter, and the IP address 192.168.9.254 belongs to my Cisco RV082 router/firewall. You will note that you may also need to allow tftp (UDP port 69) and ntp (UDP port 123) for your Vonage adapter.
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] udhcpc: Router 192.168.9.254 obtained
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] udhcpc: DNS Server 192.168.9.2 obtained
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] : MXP module loading
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] MXP_TMR: CPUFREQ=162500000
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] MXP_TMR: No need to start linux timer
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] MXP_TMR: Calibrating MXP Timer... Ticks/sec=200
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] MXP_TMR: MIPS Timer start_count=1249316337, end_count=1249722587, current_count=1249722597
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] MXP_TMR: Calibrated Timer16 count = 19527
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] : MXP module loaded
Oct 19 22:22:46 192.168.9.11 [00159AC6CADB] : MXP memory module loaded
Oct 19 22:22:47 192.168.9.11 [00159AC6CADB] HW_DSP: interrupt mode 0, enable_isr 0
Oct 19 22:22:47 192.168.9.11 [00159AC6CADB] udhcpc: Lease of 192.168.9.11 obtained, lease time 604800
Oct 19 22:22:47 192.168.9.11 [00159AC6CADB] : putting dsp in tight loop status=1
Oct 19 22:22:47 192.168.9.11 [00159AC6CADB] : HW_DSP module loaded
Oct 19 22:22:47 192.168.9.11 [00159AC6CADB] DSP mult: 10 Input clock: 12288000, final DSP speed: 122880000
Oct 19 22:22:48 192.168.9.254 Oct 19 22:22:48 2011 gw1 RGFW-OUT: ACCEPT (TCP 192.168.9.11:2049->204.13.248.112:80 on ixp1) [0,0]
Oct 19 22:22:49 192.168.9.11 [00159AC6CADB] : TIUHW module start loading
Oct 19 22:22:57 192.168.9.254 Oct 19 22:22:56 2011 gw1 RGFW-OUT: ACCEPT (TCP 192.168.9.100:3786->209.123.109.175:80 on ixp1) [0,0]
Oct 19 22:22:57 192.168.9.11 [00159AC6CADB] DSP mult: 10 Input clock: 12288000, final DSP speed: 122880000
Oct 19 22:22:57 192.168.9.11 [00159AC6CADB] : putting dsp in tight loop status=1
Oct 19 22:22:57 192.168.9.11 [00159AC6CADB] DEBUG: Registering port 554.
Oct 19 22:22:57 192.168.9.11 [00159AC6CADB] DEBUG: Socket 94db1a80 has service_class 0.
Oct 19 22:22:59 192.168.9.11 [00159AC6CADB] DEBUG: Registering port 4000.
Oct 19 22:22:59 192.168.9.11 [00159AC6CADB] DEBUG: Socket 94cf8da0 has service_class 0.
Oct 19 22:23:04 192.168.9.254 Oct 19 22:23:03 2011 gw1 RGFW-OUT: ACCEPT (UDP 192.168.9.11:10000->69.59.234.33:10000 on ixp1) [0,0]
Oct 19 22:23:04 192.168.9.11 [00159AC6CADB] DEBUG: Deregistering port 4000.
Oct 19 22:23:06 192.168.9.254 Oct 19 22:23:05 2011 gw1 RGFW-OUT: ACCEPT (UDP 192.168.9.11:2054->69.59.252.63:69 on ixp1) [0,0]
Oct 19 22:23:13 192.168.9.254 Oct 19 22:23:12 2011 gw1 RGFW-OUT: ACCEPT (UDP 192.168.9.11:2055->216.115.23.76:123 on ixp1) [0,0]
Oct 19 22:24:24 192.168.9.254 Oct 19 22:24:23 2011 gw1 RGFW-IN: ACCEPT (IGMP 192.168.9.254->224.0.0.1 on ixp2) [30,0]
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] udhcpc: Router 192.168.9.254 obtained
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] udhcpc: DNS Server 192.168.9.2 obtained
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] : MXP module loading
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] MXP_TMR: CPUFREQ=162500000
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] MXP_TMR: No need to start linux timer
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] MXP_TMR: Calibrating MXP Timer... Ticks/sec=200
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] MXP_TMR: MIPS Timer start_count=1274661555, end_count=1275067805, current_count=1275067822
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] MXP_TMR: Calibrated Timer16 count = 19528
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] : MXP module loaded
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] : MXP memory module loaded
Oct 19 22:24:28 192.168.9.11 [00159AC6CADB] udhcpc: Lease of 192.168.9.11 obtained, lease time 604800
Oct 19 22:24:29 192.168.9.11 [00159AC6CADB] HW_DSP: interrupt mode 0, enable_isr 0
Oct 19 22:24:29 192.168.9.11 [00159AC6CADB] : putting dsp in tight loop status=1
Oct 19 22:24:29 192.168.9.11 [00159AC6CADB] : HW_DSP module loaded
Oct 19 22:24:29 192.168.9.11 [00159AC6CADB] DSP mult: 10 Input clock: 12288000, final DSP speed: 122880000
Oct 19 22:24:30 192.168.9.254 Oct 19 22:24:29 2011 gw1 RGFW-OUT: ACCEPT (TCP 192.168.9.11:2049->204.13.248.112:80 on ixp1) [0,0]
Oct 19 22:24:30 192.168.9.11 [00159AC6CADB] : TIUHW module start loading
Oct 19 22:24:39 192.168.9.254 Oct 19 22:24:38 2011 gw1 RGFW-OUT: ACCEPT (ICMP type 8 code 0 75.146.8.41->68.87.20.69 on ixp1) [31,0]
Oct 19 22:24:39 192.168.9.11 [00159AC6CADB] DSP mult: 10 Input clock: 12288000, final DSP speed: 122880000
Oct 19 22:24:39 192.168.9.11 [00159AC6CADB] : putting dsp in tight loop status=1
Oct 19 22:24:39 192.168.9.11 [00159AC6CADB] DEBUG: Registering port 554.
Oct 19 22:24:39 192.168.9.11 [00159AC6CADB] DEBUG: Socket 94cb63e0 has service_class 0.
Oct 19 22:24:39 192.168.9.254 Oct 19 22:24:38 2011 gw1 RGFW-OUT: ACCEPT (ICMP type 8 code 0 75.146.8.41->208.82.196.25 on ixp1) [31,0]
Oct 19 22:24:40 192.168.9.11 [00159AC6CADB] DEBUG: Registering port 4000.
Oct 19 22:24:40 192.168.9.11 [00159AC6CADB] DEBUG: Socket 94cb70e0 has service_class 0.
Oct 19 22:24:45 192.168.9.254 Oct 19 22:24:45 2011 gw1 RGFW-OUT: ACCEPT (UDP 192.168.9.11:10000->216.115.20.77:10000 on ixp1) [0,0]
Oct 19 22:24:46 192.168.9.11 [00159AC6CADB] DEBUG: Deregistering port 4000.
Oct 19 22:24:48 192.168.9.254 Oct 19 22:24:47 2011 gw1 RGFW-OUT: ACCEPT (UDP 192.168.9.11:2054->216.115.21.201:69 on ixp1) [0,0]
Oct 19 22:24:55 192.168.9.254 Oct 19 22:24:54 2011 gw1 RGFW-OUT: ACCEPT (UDP 192.168.9.11:2055->69.59.240.76:123 on ixp1) [0,0]
Oct 19 22:25:04 192.168.9.11 [00159AC6CADB] DEBUG: Registering port 10050.
Oct 19 22:25:04 192.168.9.11 [00159AC6CADB] DEBUG: Socket 94db1a80 has service_class 0.
Oct 19 22:25:04 192.168.9.11 [00159AC6CADB] DEBUG: Registering port 10051.
Oct 19 22:25:04 192.168.9.11 [00159AC6CADB] DEBUG: Socket 94963100 has service_class 0.
Oct 19 22:25:05 192.168.9.254 Oct 19 22:25:04 2011 gw1 RGFW-IN: BLOCK-RULES (UDP 69.59.241.14:16226->192.168.9.11:10050 on ixp1) [1406,92143629]
Oct 19 22:25:09 192.168.9.254 Oct 19 22:25:08 2011 gw1 RGFW-RATELIMIT: 13 messages of type BLOCK-SYNFLOOD reported 4 second(s) ago
Oct 19 22:25:09 192.168.9.254 Oct 19 22:25:08 2011 gw1 RGFW-IN: BLOCK-RULES (UDP 69.59.241.14:16227->192.168.9.11:10051 on ixp1) [1406,92143629]
Oct 19 22:25:18 192.168.9.11 [00159AC6CADB] DEBUG: Deregistering port 10050.
Oct 19 22:25:18 192.168.9.11 [00159AC6CADB] DEBUG: Deregistering port 10051.
Based on the above information, if I wanted to only allow access to Vonage IP addresses used by my VT2442, I would allow the IP address ranges shown below:
NetRange: 216.115.16.0 - 216.115.31.255
CIDR: 216.115.16.0/20
OriginAS:
NetName: DATACENTER
NetHandle: NET-216-115-16-0-1
Parent: NET-216-0-0-0-0
NetType: Direct Assignment
RegDate: 2003-07-18
Updated: 2009-04-28
Ref: http://whois.arin.net/rest/net/NET-216-115-16-0-1
OrgName: Vonage Holdings, Inc.
OrgId: VONAG
Address: 23 Main St
City: Holmdel
StateProv: NJ
PostalCode: 07733
Country: US
NetRange: 69.59.224.0 - 69.59.255.255
CIDR: 69.59.224.0/19
OriginAS:
NetName: VONAGE-BLOCK-2
NetHandle: NET-69-59-224-0-1
Parent: NET-69-0-0-0-0
NetType: Direct Assignment
RegDate: 2005-06-14
Updated: 2009-04-28
Ref: http://whois.arin.net/rest/net/NET-69-59-224-0-1
OrgName: Vonage Holdings, Inc.
OrgId: VONAG
Address: 23 Main St
City: Holmdel
StateProv: NJ
PostalCode: 07733
Country: US
I also use my RV082 to switch between my primary ISP (Comcast) and a backup AT&T connecton if there is a problem with the Comcast connection. Therefore, I run a DDNS client on my VT2442 so that I can easily access it remotely if needed by using the same hostname no matter which ISP is being used, so I would also have to include the IP address(es) that belong to Dynamic Network Services in addition to those belonging to Vonage.
NetRange: 204.13.248.0 - 204.13.251.255
CIDR: 204.13.248.0/22
OriginAS: AS33517
NetName: DNSINC-1
NetHandle: NET-204-13-248-0-1
Parent: NET-204-0-0-0-0
NetType: Direct Assignment
Comment: Dynamic Network Services, Inc. http://www.dyndns.org
RegDate: 2005-05-10
Updated: 2008-01-03
Ref: http://whois.arin.net/rest/net/NET-204-13-248-0-1
OrgName: Dynamic Network Services, Inc.
OrgId: DNS-33
Address: 150 Dow St.
City: Manchester
StateProv: NH
PostalCode: 03101
Country: US
--
A well-regulated militia, being necessary to the security of a free State, the right of the people to keep and bear arms shall not be infringed. |
