PCI Compliance with Centurylink Modem



  • Getting a PCI compliance failure - Client has Centurylink Modem/Router (trying to change this to a real router soon) Technicolor C2000T.

    They are getting this message:

    1.png

    I am finding some references to this being the port that Centurylink uses for firmware updates. Can anyone confirm if this is something that is normal/expected?



  • @CCWTech said in PCI Compliance with Centurylink Modem:

    Getting a PCI compliance failure - Client has Centurylink Modem/Router (trying to change this to a real router soon) Technicolor C2000T.

    They are getting this message:

    1.png

    I am finding some references to this being the port that Centurylink uses for firmware updates. Can anyone confirm if this is something that is normal/expected?

    No clue. I have worked hard over the years to get to the position of not having to deal with ISP provided equipment anymore in the environments I have to support.

    Start it up the Century Link support food chain, get them to validate the "security" of the implementation. THen you can simply check the box and move on.



  • @JaredBusch said in PCI Compliance with Centurylink Modem:

    @CCWTech said in PCI Compliance with Centurylink Modem:

    Getting a PCI compliance failure - Client has Centurylink Modem/Router (trying to change this to a real router soon) Technicolor C2000T.

    They are getting this message:

    1.png

    I am finding some references to this being the port that Centurylink uses for firmware updates. Can anyone confirm if this is something that is normal/expected?

    No clue. I have worked hard over the years to get to the position of not having to deal with ISP provided equipment anymore in the environments I have to support.

    Start it up the Century Link support food chain, get them to validate the "security" of the implementation. THen you can simply check the box and move on.

    Ok, thought I would check here first as I always dread calling ISP support. To even get them to understand what a port is can be challenging.

    I'm working on getting them on to Ubiquti soon.



  • Just as I thought, their techs don't even understand what a port is, or what a firewall is. They keep telling me that "all ports are open".

    I explained the difference between the internet and a firewall on the modem/router and was told to call back to get a tech that understands that stuff.

    I'm not kidding.



  • They have bonded ADSL. I haven't been able to get a Unifi 3 port to work when moving to bridge mode. That would actually solve the issue if I could get that to work. Otherwise their contract is up in March and they can move to cable internet.



  • @CCWTech said in PCI Compliance with Centurylink Modem:

    Just as I thought, their techs don't even understand what a port is, or what a firewall is.

    CenturyLink, they are always like this. Same vendor that provided a "cloud product" of undefined design and sent sales people to Spiceworld and tried to sell a product and if you asked them what it was... they had no idea. They literally didn't know what they were selling, at all. And absolutely no one could tell me. They went through this big effort to ask me to come to their booth personally and when I did they didn't know whey they were there. I legit wanted to know about their product and they were just like deer in the headlights when I asked for any description of what it was or how I would use it.

    They actually had sales people that just thought that "cloud" on a name was all that it took and that people would buy it with no further information.

    To this day... was it software, ISP services, an IaaS cloud platform like Digital Ocean, colocation... I have zero idea.



  • @CCWTech said in PCI Compliance with Centurylink Modem:

    They have bonded ADSL. I haven't been able to get a Unifi 3 port to work when moving to bridge mode. That would actually solve the issue if I could get that to work. Otherwise their contract is up in March and they can move to cable internet.

    They can always move earlier and either just pay for both or cancel for breach of contract because they were in violation of federal mandates and/or could not provide support on their own service. That's an easy cancellation.



  • Have you tried testing the port to see what happens?



  • @scottalanmiller said in PCI Compliance with Centurylink Modem:

    Have you tried testing the port to see what happens?

    Got busy, assigned it to Val for the team.