Hi,
newby to this forum. I like to think I'm a bit of a geek and I like my privacy. I also like to think my system is fairly well instrumented so a couple days ago when I saw part of the system reporting odd traffic to google, which I dont use, to the point of having it firewalled, I decided to peer deeper into this since I thought I must have left a security hole open somewhere. The packets in question happen very often, every few minutes which is what caught my attention. After putting sniffers of every interface I determined _none_ of this traffic was inside my firewall, it appeared to be at the cable modem (I said I was instrumented but I wont say here exactly how I came to this conclusion...). I did some tests to make sure this was not a quirk. I power cycled modem and the traffic came right back. I then forced the internet IP to change a couple times and the traffic came back again. The Google IP in question is fixed for me but appears to be probably geolocated based on of IPs in the block so I wont post it here but it is in this block that the call to google is headed.
NetRange: 74.125.0.0 - 74.125.255.255
CIDR: 74.125.0.0/16
NetName: GOOGLE
Since I log all traffic on the network I was able to determine when this first started to happen. It started Dec 14 right after the FCC votes to repeal net neutrality. I find that interesting. I am going to try the same monitoring on some other peoples cable connections and if I confirm what I suspect, well bad to be these guys. I wonder if googlespygate.com is available.
So first look says to me Xfinity turned on some direct logging from peoples cable modemds to google once the Net rules were repealed.
WHAT DO YOU HAVE TO SAY ABOUT THIS XFINITY ?
↧