{"id":83,"date":"2015-01-28T09:53:12","date_gmt":"2015-01-27T20:53:12","guid":{"rendered":"https:\/\/micro.muppetz.com\/blog\/?p=83"},"modified":"2015-02-04T06:56:16","modified_gmt":"2015-02-03T17:56:16","slug":"asb-bank-and-tor","status":"publish","type":"post","link":"https:\/\/micro.muppetz.com\/blog\/2015\/01\/28\/asb-bank-and-tor\/","title":{"rendered":"ASB Bank and TOR"},"content":{"rendered":"<p>Sometime in early December I thought I&#8217;d have a play with <a title=\"Tor Project: Anonymity Online\" href=\"https:\/\/www.torproject.org\/\" target=\"_blank\">TOR<\/a>. \u00a0I ran it up on micro and played with it for a few days. \u00a0I thought I&#8217;d &#8220;help the TOR world&#8221; by running an exit node, seeing as we have more bandwidth allocated to us than we use.<\/p>\n<p>After a few days though I figured hell, I probably wasn&#8217;t doing much to help, so I turned it off and forgot about it.<\/p>\n<p>Fast forward to a few weeks later: \u00a0Suddenly my wife can&#8217;t get to a website she needs to access. \u00a0Do some digging, turns out that it works from other IP&#8217;s, just not our home IP. \u00a0Our home IP is static, so I can&#8217;t just reboot and get a new one. \u00a0I email the people running the website and to my surprise, they&#8217;re very helpful. \u00a0They investigate and tell me that due to my IP having been a TOR node, it&#8217;s been blacklisted. \u00a0Their network gear auto-updates a blacklist every few weeks, so if we&#8217;re not longer a TOR node we should be removed.<\/p>\n<p>No worries, I put a bypass in place in our home router, using OpenVPN. \u00a0Annoying, but it works. \u00a0A couple of weeks later they email me to tell me that it&#8217;s all sorted now. I remove the bypass and their site still works. Thanks!<\/p>\n<p>Then\u00a0<strong><a title=\"FastNet Classic\" href=\"https:\/\/fnc.asbank.co.nz\" target=\"_blank\">ASB FastNet<\/a>\u00a0<\/strong>stops working. Both the website and their Mobile App (which accesses <em>MobileAPI.asbbank.co.nz, <\/em>a different IP than the Browser site.) \u00a0Argh!<\/p>\n<p>I can&#8217;t get a single communication out of them as to why it doesn&#8217;t work, but trying to connection to FastNet classic gives me:<br \/>\n<code>micro:~&gt; curl -vv -I <a href=\"https:\/\/fnc.asbbank.co.nz\/\" target=\"_blank\">https:\/\/fnc.asbbank.co.nz<\/a><br \/>\n* About to connect() to fnc.asbbank.co.nz port 443 (#0)<br \/>\n* Trying 210.55.180.58...<br \/>\n* Connection refused<br \/>\n* couldn't connect to host<br \/>\n* Closing connection #0<br \/>\ncurl: (7) couldn't connect to host<\/code><\/p>\n<p>Which is quite annoying. \u00a0So I have an OpenVPN bypass in place for it as well. \u00a0The problem is my OpenVPN bypass is quite flakey, mostly due to the way I&#8217;ve setup OpenVPN. \u00a0It doesn&#8217;t reconnect properly when the tunnel drops, which it does every now and then on the end of a consumer grade Internet Service.<\/p>\n<p>Can I get hold of anyone at ASB to help me? \u00a0Tell me why the IP&#8217;s blacklisted? \u00a0Nope. \u00a0I&#8217;ve emailed, prodded. \u00a0Very frustrating. \u00a0Please, someone at ASB in the Network Team get in contact. \u00a0Tell me what I can do to get removed\/get this fixed.<\/p>\n<p>Thanks,<\/p>\n<p>Tim<\/p>\n<p><strong>Update:\u00a0<\/strong>ASB use <a title=\"Brightcloud\" href=\"http:\/\/www.brightcloud.com\/tools\/url-ip-lookup.php\">BrightCloud&#8217;s IP Reputation<\/a> service. \u00a0Once I filed a request with Brightcloud and they verified we weren&#8217;t a TOR exit node anymore, they updated the status of our IP address and we can once again access ASB directly. \u00a0Thanks ASB for getting back to me after I made a lot of noise&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Sometime in early December I thought I&#8217;d have a play with TOR. \u00a0I ran it up on micro and played with it for a few days. \u00a0I thought I&#8217;d &#8220;help the TOR world&#8221; by running an exit node, seeing as we have more bandwidth allocated to us than we use. After a few days though [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33,11,18,10],"tags":[34,69,16],"class_list":["post-83","post","type-post","status-publish","format-standard","hentry","category-computers","category-routing","category-security","category-technical","tag-annoyed","tag-banking","tag-networking"],"_links":{"self":[{"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/posts\/83","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/comments?post=83"}],"version-history":[{"count":4,"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/posts\/83\/revisions"}],"predecessor-version":[{"id":113,"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/posts\/83\/revisions\/113"}],"wp:attachment":[{"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/media?parent=83"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/categories?post=83"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/micro.muppetz.com\/blog\/wp-json\/wp\/v2\/tags?post=83"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}