A link to "Ports blocked on Comcast's network" will be sent via email.
We hate spam. The information you've entered will not be shared or sold.
This article applies to Microsoft® Hosted Exchange customers who have not yet been migrated to Microsoft® Office 365. If you are currently using Office 365, please visit Microsoft’s Set up Office 365 for business support page.
For the protection of the network and our customers, Comcast Business Internet blocks certain ports. Learn which ports are blocked and why.
The ports listed below are blocked to protect against common viruses and worms, malicious intruders, and other security risks. These ports are blocked to protect our customers and the integrity of the Comcast Network; these blocks cannot be lifted.
Inbound and outbound, blocked by default.
Port 0 is a reserved port, which means it should not be used by applications. Network abuse has prompted the need to block this port.
Inbound only, blocked by default.
Used to obtain dynamic Internet protocol (IP) address information from Comcast's dynamic host configuration protocol (DHCP) server that assigns IP addresses to customer computers.
DHCP ports can be used for malicious attacks, such as obtaining access to a computer or network and its devices.
Allows file sharing over networks.
When improperly configured, they can expose critical system files or give full file system access (run, delete, copy) to any malicious intruder connected to the network.
SNMP is vulnerable to reflected amplification distributed denial of service (DDoS) attacks.
Security risks; vulnerable to attacks, exploits, and worms (such as Sasser and Ninder).
Vulnerable to malicious route updates, which provide several attack possibilities.
Multiple vulnerabilities (viruses, worms, DoS attacks).
In very rare situations, port 25 will be blocked by Comcast Customer Security Assurance on a per customer basis (blocked at the modem) and not across the network. This block will be preceded by an email and letters to the billing address. In this case, you can use secured port 587 for sending email. Get instructions to configure your email client to send via a secured port.
If you are running a mail server please contact Comcast Customer Security Assurance at 1-877-807-6580 for more information on this block.
Inbound and outbound, not blocked by default.
We may apply a sending block, which does not interrupt Comcast webmail service. However, it will prevent email programs or clients (e.g., Outlook Express) from sending email.
An unsecured port that can be used to send spam.
Customers may be advised by our Security Assurance team to switch their modem connection to a secured port that requires authentication (such as port 587).
Thank you! We've received your information.
To help maintain your company's outgoing email security, follow these instructions to configure your modem.
Learn about how to resolve issues related to email bounce back messages, including: Code BL006, exceeded limits and more.
Having problems with your Comcast Business email? Learn some quick tips for resolving the some of the most common issues.
Symantec, the Symantec Logo, the Checkmark Logo, and Norton, Norton 360 and Norton by Symantec are registered trademarks of Symantec Corporation ©2014 Symantec Corporation. All rights reserved. Microsoft product names and logos are trademarks or registered trademarks of Microsoft Corporation. All other trademarks are the property of their respective owners.