Search the Community
Help & Support Forums
- Business Internet & Ethernet
- Active Core
- Cloud Solutions
- Billing & Customer Service
- Business Phone
- Business TV
- Think Tank
- Welcome Community
Hi brucem_sb and welcome to the business forums. I would like to assist with you...
Hi brucem_sb and welcome to the business forums.
I would like to assist with your reverse DNS request. Please private message me your first and last name, the name of your business, the full address of your business location and the phone number associated with your account. Please also include your static IP address and where you would like it pointing to.
This is a pre-sales question, but the sales folks do not seem to be able to tell me. I am looking at getting a block of static IPs, and from what I gather, I will need to use the business gateway for this. I was told that I could use my own router. How are the static interfaces coming from the modem? Does it have multiple interfaces where I can just run a 1:1 from the modem into one of the external NICs on the router? Keeping my router is the biggest part of this equation, as it is heavily customized and also acts as my WLAN controller.
I noticed that one of my servers on my external static IP is constantly being bombarded with DDoS attacks. As soon as I take that server offline, the attacks stop and I can then connect to the internet successfully again.
Becuase of this, I decided that I am going to get a 3rd party firewall (Palo Alto PA-220) and use that to help remediate the DDoS attacks. However, an issue that I feel may happen is that I won't be able to use this firewall to manage the external IP address ranges becuase those are handled by the Cisco Gateway device that is provided by Comcast.
Talking with their Level 3 enginieers, they said that they do not support any other modem since the routes for the static IP's that I use are hard coded in that gateway that they provide me.
The question I have is if I were to change the router IP address from x.x.x.62 (my external gateway address) to say x.x.x.61, which would be the PAN, and then have the PAN's next hop be x.x.x.62 and then use the NAT in the PAN to handle the external IP's, would it work, or will I end up with IP address conflicts since the Comcast gateway handles these addresses?
Has anyone set anything like this up before where all routing was handled by a 3rd party firewall/router with static IP's provided by Comcast hardware?
I am not able to advise on how to set up your personal network or devices as that would be past the...
I am not able to advise on how to set up your personal network or devices as that would be past the Comcast Business demarcation policy. You're definitely able to reach out to the manufacturer of the device or any other community member is also welcome to reply with their feedback as well.
Please let me know if you need anything.
Email from our domain is now being blocked due to failed reverse lookup because our hostname does not follow normal conventions.
As I understand it, I need to have the PTR record updated on comcast servers so we can get removed from the blacklists (specifically, RATS-DYNA)
How do I get this done?
Hello gerryf Welcome to the forum. For PTR/RDNS request please send us the following i...
Welcome to the forum.
For PTR/RDNS request please send us the following information via private messaging:
1. Your full name
2. Account number
3. DNS entry with static ip
I believe you can send a private message to Comcast_Jon...of course, I am not sure exactly how to d...
I believe you can send a private message to Comcast_Jon...of course, I am not sure exactly how to do that. I went into Messages, clicked COMPOSE and then typed COMCAST_Jon in the "to" field, but no response yet.
Most forums I have experience with allow you to click on a name and send the PM, so I hope it worked (what I did)
I need to a PTR record setup for our new service. Please let me know who to contact.
Hi lsmith and welcome to the business forums. I can help with your PTR record. Pl...
Hi lsmith and welcome to the business forums.
I can help with your PTR record. Please private message me your full name, the name of the business, the full service address and the phone number associated with the account. Please also include your static information and where you want to point it to.
I have just moved our comcast service to a new location. The old and new each had 5 static IP addresses that I had working at our old location with cascaded NAT settings.
Connected to the comcast CG3000DCR gateway is my Netgear FVS338 VPN router.
On my old comcast box I had 1-1 NAT set up for
aa.bb.cc.73 -> 192.168.1.99 (This is the Netgear FVS338 and used for VPN)
aa.bb.cc.74 -> 192.168.1.101
aa.bb.cc.75 -> 192.168.1.102
aa.bb.cc.76 -> 192.168.1.103
aa.bb.cc.77 -> 192.168.1.100
My Netgear FVS338 has similar 1-1 NAT set to direct those 5 addresses to computers on the LAN side in the 192.168.10 subnet and all was working just fine.
When we moved to a new location I had temporarily set up another VPN between our old and new locations with a TPLink router at the new location behind the CG3000DCR to handle the VPN
When we got to the point of moving our servers to the new building, I switched my 2 routers so that the FVS338 was at the new location. Since that CG3000DCR had the lan side set with the 10.1.10 subnet, I had to modify the 1-1 NAT on the FVS338 accordingly to match the 1-1 NAT that I set on the CG3000DCR:
dd.ee.ff.73 -> 10.1.10.5 (new address for the FVS338)
dd.ee.ff.74 -> 10.1.10.6
dd.ee.ff.75 -> 10.1.10.7
dd.ee.ff.76 -> 10.1.10.8
dd.ee.ff.77 -> 10.1.10.9
I had experienced a lot of problems getting my VPNs to connect reliably to the FVS338 for the 1st week, but now they seem to be connecting OK I have 1 location with a static IP and 2 others with dynamic IPs that are connected so my .34 public address does seem to be working.
I cannot seem to connect (from an outside IP address) to any of the other 4. As far as I can tell I have the same settings on the Comcast router as I had at my old location other than the different addresses. The strange thing is that a week ago for a period of about a half hour I was able to access all 5 of the public addresses (by using VNC to connect over my VPN to a remote PC and then trying to access via the public static IPs) and then without making any changes to either router it suddenly stopped working and has not worked since.
The comcast router shows that it has the /29 for 5 static addresses.
If I connect a computer directly to the comcast cable modem outside of my FVS338 so it is in the 10.1.10 subnet it can see all of the 1-1 NAT computers that I configured on the FVS338 so I know those are getting outside of that router.
I don't know what to try next. Could there be something on COmcast's end that is only giving me the 1 static IP address instead of the 5 even though my router is configured for 5? That woudl seem odd since the router's address is .78 and if only 1 was assigned I would have expected it to be .74
both the Disable Firewall and Disable Smart Packet Detection are checked.
Thanks for any help,
Hi stevet. The config info provided appears correct for 1 to 1 NAT. If you will send me...
Hi stevet. The config info provided appears correct for 1 to 1 NAT. If you will send me a private message (PM ) with account info for the new location, I will have our support team investigate this issue.
I replied to you with a private message and gave you a phone number that you requested more than a ...
I replied to you with a private message and gave you a phone number that you requested more than a week ago, but it says you have not read that message yet.
I still cannot get any of my static IPs to work with 1-1 NAT except for my Netgear VPN router
Is there some place online to start a support request? The telephone menus, muzak and wait times are extremely annoying and I never got to talk with anyone after 10 minutes
We have a /28 block of static IP addresses on our Comcast Business account.
I'd like to get things set up such that when one does a WHOIS lookup on these, our company's information is returned.
Currently, the lookup returns generic Comcast information.
Our DNS is hosted elsewhere (Network Solutions) and we currently don't have any DNS names pointed at these addresses.
What do I need to do, or who do I need to reach out to, to get this set up?
Hi DWS_Cliff and welcome to the business forms. I would like to review your requ...
Hi DWS_Cliff and welcome to the business forms.
I would like to review your request on your static information. Please private message me your full name, the full service address and the phone number associated with your account. Please also include your static IP information and the details you would like them to display.
Please and thanks.
jvwjgames wrote: So then if I can't tell me how does Comcast or others do it on there routers add ...
So then if I can't tell me how does Comcast or others do it on there routers add multiple statics to multiple router as you see in traceroutes.
Consider the following example:
You have 4 routers. You would like to use 4 corresponding static IPs from Comcast on these routers. What you would do is, on each router's configuration page, set static IPs on the WAN interface, and enter the Comcast-provided values. So if Comcast gives you the static IP range 184.108.40.206-50.252.60-13, you would configure router A with 220.127.116.11 on the WAN, router B with 18.104.22.168 on the WAN, router C with 22.214.171.124 on the WAN, and router D with 126.96.36.199 on the WAN. All of the routers will have the same subnet mask, default gateway, and DNS servers, so here each router will have a subnet mask of 255.255.255.248, default gateway of 188.8.131.52, and DNS servers of 184.108.40.206 and 220.127.116.11. This way, you can have separate networks behind each router, and each router is using 1 of your 5 static IPs.
Below is a very crude image:
EDIT you ask how Comcast & others will sometimes report multiple IPs for the same host, as you see in traceroutes..... I don't think the Comcast business gateways will allow multiple IP addresses on one device.... I believe they enfore a "1-IP-per-device" policy.
Sorry - I haven't seen this in the boards. Can I configure our Comcast router to open a DMZ or do I need to order static IPs? I just need one system that I can get to from the outside world.
I have the problem with DMZ too. It seems that the DMZ feature on Gateway SMCD3G doesn't work. Cou...
I have the problem with DMZ too.
It seems that the DMZ feature on Gateway SMCD3G doesn't work. Could you help me?
I did enable that.
I did input one LAN device.
But the device can't be accessed neither via internet, nor LAN with public IP.
Welcome BruceCampbell. DMZ can be opened on the router by accessing the Firewall Tab and then...
Welcome BruceCampbell. DMZ can be opened on the router by accessing the Firewall Tab and then the DMZ tab. As you state that you need remote access to only one system, having a fixed static IP is the optimal choice as this will eliminate any potential conflict with rest of your network. Alternately you can create a port forwarding rule for the device as this will also remote access capability while maintaining your network integrity.
Hello, I have some questions on how to set-up Reverse DNS, PTR and MX records for our private Exchange email server sitting behind a Comcast Static IP address.
We run our own Exchange server on a private network behind static IP address: 18.104.22.168. Our domain is www.estarmail.com and mail.estarmail.com for email. I have registered these domains and set up Reverse DNS, PTR and MX records at REGISTER.COM our registrar.
When I go to DNSQUERY.COM I get no results for A, CNAME, MX and TXT queries. The DNS and PTR query properly return estarmail.com for my IP. The reverse DNS query returns an undefined (???) PTR to my domain. The WHOIS query returns Comcast Business Communications, LLC.
What can I do to get the various missing or incorrect DNS records set up so they will resolve properly to our static IP and domain?
Office: +1 (773) 697-8283
Cell: +1 (847) 372-2381
Thank you, I have updated the PTR record at REGISTER.COM and opened a ticket at Comcast.
Thank you, I have updated the PTR record at REGISTER.COM and opened a ticket at Comcast.
A domain registry like register.com is only authoratative for forward records like A records and MX...
A domain registry like register.com is only authoratative for forward records like A records and MX records. You can only setup PTR records with the hoster of the IP address block - in this case Comcast.
The by the book process is contact Comcast on the phone Mon-Fri 8-5pm Eastern time.
Incidentally your PTR isn't correct. Take a look at the following:
Microsoft Windows [Version 6.1.7601]
Copyright (c) 2009 Microsoft Corporation. All rights reserved.
Default Server: UnKnown
> set type=mx
estarmail.com MX preference = 0, mail exchanger = mail.estarmail.com
estarmail.com nameserver = dns142.a.register.com
estarmail.com nameserver = dns167.b.register.com
estarmail.com nameserver = dns223.c.register.com
estarmail.com nameserver = dns249.d.register.com
mail.estarmail.com internet address = 22.214.171.124
dns142.a.register.com internet address = 126.96.36.199
dns167.b.register.com internet address = 188.8.131.52
dns223.c.register.com internet address = 184.108.40.206
dns249.d.register.com internet address = 220.127.116.11
> set type=a
> set type=ptr
18.104.22.168.in-addr.arpa name = estarmail.com
(should be mail.estarmail.com)
91.70.in-addr.arpa nameserver = dns104.comcast.net
91.70.in-addr.arpa nameserver = dns102.comcast.net
91.70.in-addr.arpa nameserver = dns103.comcast.net
91.70.in-addr.arpa nameserver = dns105.comcast.net
91.70.in-addr.arpa nameserver = dns101.comcast.net
dns101.comcast.net internet address = 22.214.171.124
dns101.comcast.net AAAA IPv6 address = 2001:558:fe23:8:69:252:250:103
dns102.comcast.net internet address = 126.96.36.199
dns102.comcast.net AAAA IPv6 address = 2001:558:1004:7:68:87:85:132
dns103.comcast.net internet address = 188.8.131.52
dns103.comcast.net AAAA IPv6 address = 2001:558:1014:c:68:87:76:228
dns104.comcast.net internet address = 184.108.40.206
dns104.comcast.net AAAA IPv6 address = 2001:558:100a:5:68:87:68:244
dns105.comcast.net internet address = 220.127.116.11
dns105.comcast.net AAAA IPv6 address = 2001:558:100e:5:68:87:72:244
Forward and reverse records only exist for hostnames not domains.
A domain (estarmail.com) can have a MX record and it can have an A record but the MX
record is only used for routing mail. The A record is not. CNAME records are not used
for routing mail at all. Setting a PTR (reverse DNS) record to point to a domain instead of
a hostname is nonsensical.