Outgoing port 22 vanishing through cable modem
-
My client's info:
Internet provider: Cox
Connections:
Cable Modem -> SG-5100 -> SG-7100 -> office LANSG-5100 is being use as the simple CIDR block router for Cox CIDR block range.
SG-7100 is the main firewall.They are on a Cox biz account. The other day they had to replace my client's cable modem. Ever since then everything going outbound from inside our network to port 22 vanishes through the cable modem. Example: if I log into the shell on the SG-5100 and ssh to my home office (SG-3100) on port 22 which is blocked, my SG-3100 shows nothing in the firewall log, but if I use some other port like 52022 the SG-3100 immediately shows it's been blocked. Every Netgate device that myself and my clients use are on ports other than 22 for ssh access. Even though that has nothing to do with outgoing.
The tech. at Cox was trying to say they are not blocking anything. I tried to explain to him that it's not even an inbound port, it's outbound and it's vanishing where any other port is getting through. I tried to tell him that a network engineer there needs to check the network traffic. We just kept going back and forth. He finally submitted a ticket.
Nothing has changed in the configs for the SG-5100 or the SG-7100 it all started after the cable modem swap. Everything has been power cycled several times.
Just for my own sanity I am right that it's something on the Cox end and not something in the SG-5100 when it's trying to ssh out from the shell? Has anyone else had this issue with cable providers?
-
Cox called back. They said it probably is the cable modem since our last modem was more of a pass through and this one is a gateway modem. Even though it's in bridge mode he said they still have issues with ports.
-
You could try something like nmap to see if that port can get through.
-
Are there any security settings on the Cox modem that can be disabled?
