Network - Wireless & Wired Connections

Help & troubleshooting for network issues, including connecting your device to your home Wi-Fi network, connecting to public networks, troubleshooting wireless issues & ethernet connections, and optimizing streaming performance.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
Level 7

Roku communication on TCP port 2350?

I noticed my Roku devices attempting to reach out to some AWS hosts on TCP port 2350.

Watching DNS didn't show any request that resolved to the particular IP that it connected to. I couldn't find any documentation about it

I do egress filtering on my IoT devices so I'd like to understand if this is needed and ideally what it's for before I allow it.
0 Kudos
4 Replies
Highlighted
Level 8

Re: Roku communication on TCP port 2350?

AWS - Amazon Web Services for cloud storage and web hosting and probably other things.

My guess is that it is to download picture that you can see on Roku home screen on the right side.
In plain English - advertisement and probably tracking of what you watch and your habits so data can be reported to NSA, CIA, FBI, and KGB. Smiley LOL

PS
For a few weeks I was using  AdGuard DNS and picture on my Roku home screen disappeared. Then I switched back to my ISP DNS and picture came back.
Would you mind sharing DNS of those AWS hosts so I can add them to my HOSTS file, please?
0 Kudos
Highlighted
Level 7

Re: Roku communication on TCP port 2350?

tcp xx.xx.xx:36614 18.212.6.82:2350 ESTABLISHED

You don't need my lan subnet but this is what I see when I run netstat on the router itself.  Please report back the results of blocking this IP.  If it causes no problem I will do the same.  I don't want to piss off my wife lol.

0 Kudos
Highlighted

Re: Roku communication on TCP port 2350?

When I upgraded to a hardware firewall that was blocking all by default, I discovered this traffic.  My Roku devices are trying to communicate over port 2350 about once every 5 seconds.  Its a lot of garbage traffic.  When this port is blocked, all the sidebar ads stopped.  I'm only left with a single "Smithonian" ad that no longer rotates, its just that static picture.

Here is a list of IPs and Hostnames that my firewall is blocking a TCPSmiley Frustrated (SYN) packet on port 2350:

3.83.164.162, ec2-3-83-164-162.compute-1.amazonaws.com.
3.84.46.120, ec2-3-84-46-120.compute-1.amazonaws.com.
3.84.74.208, ec2-3-84-74-208.compute-1.amazonaws.com.
3.86.165.178, ec2-3-86-165-178.compute-1.amazonaws.com.
3.93.179.0, ec2-3-93-179-0.compute-1.amazonaws.com.
18.206.117.182, ec2-18-206-117-182.compute-1.amazonaws.com.
18.206.208.50, ec2-18-206-208-50.compute-1.amazonaws.com.
18.212.166.84, ec2-18-212-166-84.compute-1.amazonaws.com.
34.229.70.167, ec2-34-229-70-167.compute-1.amazonaws.com.
35.153.98.155, ec2-35-153-98-155.compute-1.amazonaws.com.
54.157.189.56, ec2-54-157-189-56.compute-1.amazonaws.com.
54.172.127.133, ec2-54-172-127-133.compute-1.amazonaws.com.
54.172.88.226, ec2-54-172-88-226.compute-1.amazonaws.com.
54.208.157.253, ec2-54-208-157-253.compute-1.amazonaws.com.
100.25.110.16, ec2-100-25-110-16.compute-1.amazonaws.com.
100.26.249.88, ec2-100-26-249-88.compute-1.amazonaws.com.

This is the last 1,000 blocked attempts, filtered for duplicates in excel.

While blocking this traffic, all channels and apps appear to be working fine.

0 Kudos
Highlighted
Level 7

Re: Roku communication on TCP port 2350?

I see this same traffic coming from my Roku Devices. I am going to create a rule to track and then block it, to make sure Roku is still working as expected. 

Thanks for the post, very helpful!!!

0 Kudos