yes, they periodically scan their customers networks (or process reports
from people who do so, such as Shadowserver)
and inform them about potential misconfigurations or vulnerabilities.
To my knowledge, access to Unbound is limited by firewall rules by default
so no access from RED network is possible. Could you run the dig command
against the current public IPv4 address of your DSL/cable connection again
and post the results here?
(From my own experience: Do you have a PlayStation/xBox or similar hardware
running in your network? Those unfortunately open up port 53 for multicast
purposes via UPnP. IPFire does not support this, but the router you got from
Vodafone probably does.)
Vodafon[e] close[d] Port 53
Yes, that’s their way of dealing with abuse coming from their own customers:
If they detect an open resolver, telnet server or similar and have access to
your device by TR-069 or other protocols, they close the corresponding port
there.
This again suggests you are running IPFire behind another router. Please
give us some more details regarding your setup.
I assume the second ‘#’ is a typo. Of course, this command will succeed if you execute it
on the firewall itself. Since Vodafone closed port 53, it makes no sense to attempt querying
that IP address from any other host on the internet.
Unfortunately I have no idea of what went wrong here. The default firewall ruleset makes it
very hard to set up an open resolved exposed on RED.
to test whether something responds to DNS queries on port 53, you would
normally run dig @[your public IP] example.com. But since Vodafone closed
port 53 on your router, this is not possible.
If I got it right, your IPFire is located behind their route. So, if the
IPFire system is the open DNS resolver, you should be able to test this:
Connect a computer to the Vodafone router, and run dig @[RED IP address of your IPFire] example.com.
Could you please post the output of that command here?
thanks for your reply. Glad this problem is now solved. You might want to inform your
ISP about that, as Vodafone refuses to do any customer support (especially if the customer
is complaining about bandwidth issues) until all abuse cases have been solved.