A question of pix port forwarding

Similar Questions

• Port Forward question e4200

  I have an e4200 and love it.  Here's my question and I hope that the forum can help:

  Background: directly connected (LAN) is a ReadyNAS Pro 6 Server.  I have a share that is configured to be a very simple through the port80 Web server.  The router is configured to direct all port 80 traffic (for example, http) to the server.  Wireless connected via Port 81 is a dlink (DCS 932 L) camera.  The port 443 (https) is transmitted also to the NAS (admin functions).  To help debug the problem, I created a portforward (1357), also on the NAS for https.  Created static IP: 192.168.1.10 and 192.168.1.11 (for the camera).  I also have a name of domain created by TZO that is active.

  Other port forward: mydlink.com which is a dlink site that allows access to the camera dlink.  I also have a Plex Server (port 32400 I think) that works great.

  Questions: On my network local (inside my house), enter, either http://mydomainname.com or http://NAS IP address gets me to the Web server and the homepage.  With: 81 takes me to the camera; : 443 or: 1357 takes me to the functions of the administrator of the server.  Is... all the works I want it.

  Go outside the home: www.mydomainname.com takes me directly on port 81 and request the login/password for dlink camera (same for www.mydomainname.com:81 and www.mydomainname.com:80). https://www.mydomainname.com takes me to the connection of camera dlink, like https://www.mydomainname.com:443 

  https://www.mydomainname.com:1357 takes me on the server and the homepage and access for all functions.

  I suspect the problem with DLink and mydlink (uses UPNP).  Any help would be greatly appreciated!

  Thank you.

  Thus, it seems that the camera works now. The Universal Plug and Play (UPnP) service in Microsoft Windows use discovery SSDP (Simple Protocol) Service to locate and connect to the services and network devices. There are security risks associated with these services, and on several occasions, these services were responsible for denial of widespread service of the host Windows campus. System and network security (SNS) recommend to disable UPnP/SSDP service on all Windows hosts and activation of the service only when necessary.

• I want to get the best on my router (Port Forward questions)

  I use the WRT54G2 router and the wmp54G. I'm trying to get games like America's army and Team Fortress 2 to work properly. I've assigned my static Ip pc using the guide portforward. I forwarded the necessary ports.

  I can't connect to my account on the U.S. military, and I can not connect to servers on Team Fortress 2. I tried to disable my anti-virus and firewall but still no luck. I'm doing it on the pc with the wireless connection.

  Any suggestions?

  I also have another question: when transmitting ports or using DMZ, what IP address I send? The pc connected directly to the router or the pc which is using ports (one wireless)?

  BTW, MY ISP is Comcast

  In most cases, you can use the DNS proxy server that is built into the router at 192.168.1.1 (address by default), but in your case would be in 192.168.2.1

  It is preferable to use the DNS proxy server.  The router keeps track of the actual Internet DNS server addresses from your ISP and transfers data to the appropriate DNS server.

  If the DNS server of the router proxy does not work, then enter your true Internet DNS server address in your computer.

  In addition, I see that you use the et.102 adresses.101 in your computers.  Your range of DHCP servers by default est.100 thru.149, so unless you have changed it, you use illegal LAN IP fixed addresses in your computer.  This could be the cause of your problems.  Note that all fixed LAN IP addresses should be outside your range of DHCP server.

• port forwarding TCP on pix 501

  can you tell me how to port forward or open tcp 21 and 1024-2774 for the end user of a backup system remotely via the pix Manager or regular here is a copy of my config thanks my apologies if this is a little wave building configuration...

  : Saved

  :

  6.2 (2) version PIX

  ethernet0 nameif outside security0

  nameif ethernet1 inside the security100

  activate the password

  pixfirewall hostname

  domain ciscopix.com

  fixup protocol ftp 21

  fixup protocol http 80

  fixup protocol h323 h225 1720

  fixup protocol h323 ras 1718-1719

  fixup protocol they 389

  fixup protocol rsh 514

  fixup protocol rtsp 554

  fixup protocol smtp 25

  fixup protocol sqlnet 1521

  fixup protocol sip 5060

  fixup protocol 2000 skinny

  names of

  list of access allow-permit tcp any any eq www

  access list permits allow tcp everything any https eq

  list of access allow-permit udp any any eq isakmp

  list of access allow-permit udp any any eq field

  list of access allow-permit tcp any any eq telnet

  list of access allow-permit tcp any any eq ftp

  access list permit to allow icmp a whole

  access list allow allow an entire esp

  list of access allow-permit tcp any any eq ssh

  list of access allow-permit tcp any any eq - ica citrix

  list of access allow-permit tcp any any eq pop3

  list of access allow-permit tcp any any eq smtp

  list of access allow-permit tcp any any eq aol

  access list, allow-in allow an entire esp

  access list allow component snap permit udp any any eq isakmp

  access list, allow-in allow icmp a whole

  access list allow component snap permit tcp any any eq ssh

  pager lines 24

  interface ethernet0 10baset

  interface ethernet1 10full

  Outside 1500 MTU

  Within 1500 MTU

  IP address outside x.x.x.226 255.255.255.240

  IP address inside 192.168.1.1 255.255.255.0

  alarm action IP verification of information

  alarm action attack IP audit

  location of PDM 192.168.1.3 255.255.255.255 inside

  location of PDM 192.168.1.5 255.255.255.255 inside

  location of PDM 192.168.1.6 255.255.255.255 inside

  location of PDM 192.168.1.7 255.255.255.255 inside

  location of PDM 192.168.1.8 255.255.255.255 inside

  location of PDM 192.168.1.9 255.255.255.255 inside

  PDM location x.x.x.88 255.255.255.255 outside

  location of PDM 192.168.1.10 255.255.255.255 inside

  location of PDM 192.168.1.11 255.255.255.255 inside

  PDM logging 100 information

  history of PDM activate

  ARP timeout 14400

  Global 1 interface (outside)

  NAT (inside) 1 0.0.0.0 0.0.0.0 0 0

  public static x.x.x.227 (Interior, exterior) 192.168.1.9 netmask

  255.255.255.255 0 0

  public static x.x.x.228 (Interior, exterior) 192.168.1.8 netmask

  255.255.255.255 0 0

  public static x.x.x.229 (Interior, exterior) 192.168.1.3 netmask

  255.255.255.255 0 0

  public static x.x.x.230 (Interior, exterior) 192.168.1.5 mask

  255.255.255.255 0 0

  public static x.x.x.231 (Interior, exterior) 192.168.1.7 netmask

  255.255.255.255 0 0

  public static x.x.x.232 (Interior, exterior) 192.168.1.6 netmask

  255.255.255.255 0 0

  Access - allows to group in the interface outside

  allow-out access-group in the interface inside

  Route outside 0.0.0.0 0.0.0.0 216.215.244.225 1

  Timeout xlate 0:05:00

  Timeout conn 0 half-closed 01:00:10: 00 udp 0: CPP 02:00 0:10:00 h323

  0:05:00 sip 0:30:00 sip_media 0:02:00

  Timeout, uauth 0:05:00 absolute

  GANYMEDE + Protocol Ganymede + AAA-server

  RADIUS Protocol RADIUS AAA server

  AAA-server local LOCAL Protocol

  Enable http server

  http 192.168.1.0 255.255.255.0 inside

  No snmp server location

  No snmp Server contact

  SNMP-Server Community public

  No trap to activate snmp Server

  enable floodguard

  Permitted connection ipsec sysopt

  No sysopt route dnat

  Telnet 192.168.1.0 255.255.255.0 inside

  Telnet timeout 5

  SSH timeout 5

  dhcpd address 192.168.1.2 - 192.168.1.33 inside

  dhcpd dns 64.89.70.2 64.89.74.2

  dhcpd lease 2000000

  dhcpd ping_timeout 750

  dhcpd outside auto_config

  dhcpd allow inside

  Terminal width 80

  Cryptochecksum:XXXXX

  : end

  [OK]

  Hello

  Port forwarding is different to allow ports through the firewall. I guess you meant allow tcp/21 and 21 1024-2774, right port?

  You need the following lines

  access list allow component snap permit tcp any any eq ftp

  access list allow component snap allowed tcp everything any 1024 2774 Beach

  You can be more specific and can replace "any" with the actual IP addresses

  Thank you

  Nadeem

• Question about port forwarding WRTU54G-TM

  I suddenly have problems with port forwarding on my WRTU54G router. I try to open port 3389 for remote access. I to the departure port 3389, 3389 to port to end, and when I press on save I get an error message that says "start port can not be smaller than the ending port!

  Besides, I have one bunch of other ports that I did a long time ago, and now he is giving me the same error message when I try to save those still. I never had this problem before. Any ideas? I double checked a million times, the start port is certainly not smaller than the port of end on one of my entries.

  Thank you!

  I have has nothing to do with it. I have since deleted all other ports transferred (I got 88 and 3074 open for xbox live) and now I can not enter something, I get the same error message. Maybe some sort of bug in my firmware? I'll try the upgrade again.

  * UPDATE *.

  I reinstalled thefirmware and the problem is solved.

• Question about WRT54G2 and port forwarding

  Recently, I replaced my WRT54G with a new WRT54G2. My old router had the port forwarding for 2 pc is as follows:

  192.168.1.100

  6073 - UDP port

  2302-2303-TCP port

  192.168.1.101

  2302-2400-UDP

  6073 - at once

  8085 - at once

  TCP port 26100-26110

  27100-27110-both

  When I try to set up my new router, it says I have overlapping of ports. Maybe I'm confused but how could he have been working on my old router and now it does not work on my new?

  Of course, try this, and I think I could solve your problem.

• Airport of Port Forwarding is more?

  So I'm pretty new to this network thing. I don't know the technical network terms then please do not use (or at least their simplification). So I managed to set up my ASUS RT - something something router. I also put in some rules to sink my Xbox One anywhere port forwarding. However, I had problems with port forwarding, so I just used the dmz for her service. However, given that I had to move my Xbox to another part of my house with worst network connection, set up a time capsule for the network. After a long time, I managed to do the work, but now I can listen to is no longer my Xbox. My guess is that the port forwarding rules are not carriers, as it connected via ethernet time capsule and the capsule is connected to another time capsule via radio and this time capsule is connected to my ASUS router via ethernet. So my question is: how to transfer the required ports to my Xbox?

  If both of your time Capsules are configured as bridges, the Asus router is the one that needs to be set up on port mapping. The port mapping is used only when a router is configured for routing. In other words, the NAT and DHCP services are enabled. This is the default value for any router.

  Just to make sure that I understand your current network configuration, the following is correct?

  • ASUS > Time Capsule > > > Time Capsule > Xbox, where ' > ' represents a wired connection, and ' > > > ' represents a wireless.

• How do I port forward on apple airport? (READ ALL)

  I have an airport express from apple connected to an asus router via wifi and I need to know how I can portforward by airport to the router because my pc is connected by ethernet to the airport. Help, please.

  The express should be none not routing at all and therefore no port forwarding.

  The only way this can work is the express installation to the wireless bridge... Apple called client mode... There is no routing.

  BUT it can also have port problems... It is really unsuitable if you operate in questions.

  In any case all the transfer is possible on the Asus.

• LRT214 Port Forwarding does not

  First of all, when you create a service in the port forwarding section, why to select the two TCP/UDP has been omitted from the selection must be embarrassing for Linksys.  Creation of 2 services, one for the other for UDP and TCP are bad design.  Would love to see that this problem has been corrected in future updates of the firmware.

  The main problem is I have configured port forwarding services, but I can't get anything to work.  I am able to access remotely to the router using the port 1443 that is configured in a separate section.  I worked in the network design and mgmt for 10 years and why Linksys decided to make the management for the LRT214 so different interface, then the rest of the market was a bad decision.  Is there anything else you can suggest to help out why these ports cannot be opened through the FW?

  On this router logs show nothing.  There is no log for blocked inbound connections and there is a class router business?

  After setting up some boxes of Windows on the local network, then transfer to a custom RDP listening port, I am able to RDP in these Windows boxes remotely.  It verifies that the Linksys router is forwarding ports correctly.  The question then is something on the Synology device itself.  Thanks for your response!

• RV042 Port forwarding stops working when the firewall is turned on

  Hey all,.

  I have an on a single WAN RV042 router and internal network. I have configured port forwarding as follows:

  HTTP[TCP/80~80]->10.0.0.6
  HTTPS[TCP/443~443]->10.0.0.6
  IMAP[TCP/143~143]->10.0.0.5
  IMAP SSL[TCP/993~993]->10.0.0.5
  SSL[TCP/587~587]->10.0.0.5 SMTP

  Everything works fine when I have the firewall turned OFF. However, when I enable the behavior is erratic. 1 of 10 attempts to connect to ANY port transmitted works. Almost all attempts at expiration time.

  Note that this happens even if you only use the default firewall rules (which must be circumvented by the port translation I've read in other posts).

  My second try was to create rules to Firewall manually, the substitution of the value default ones. I tried to add source WAN1 rules (where is my connection) to the ONE and UNIQUE IP on each port. Nothing seems to work.

  I don't know what I'm doing wrong, it's really bugging me. I had to disable the firewall if we can access our servers from outside the office. It shouldn't have to do.

  Do you know what I might try?

  Best regards

  Theo

  Hello.

  These products are processed by the Cisco Small Business Support Community.

  * If my post answered your question, please mark it as "acceptable Solution".

  Thank you!

• Limited number of ports forwarding with WAG54G2?

  Hello, I have a simple question... I'm looking to buy a WAG54G2, I downloaded the manual to check if there was a limit of ports to send because I know that it was a limitation on previous models, but I've found no information about it.

  Please can someone tell me if there is still such a restriction on this model (I think limit 10 ports on WAG54G)?

  Thank you

  Colin.

  WAG54G2 have still 10 entries for Port Forwarding (see this ), however, you can give a range of ports if you have more than 10 entries... (for example: If you have 11, 36, 48, 1014, 5214, 6452, you can just give him a range say: 11-6452, it will cover all ports between 11 and 6452)...

• Advanced Port forwarding rules

  I bought a WRT1900AC router and changed my old router Dlink DIR - 905L.

  There is a function in Dlink to set a unique public port in the router to redirect a private IP LAN and LAN if necessary internal address port. This is called: "Advanced por rules of transfer".

  In this function I defined a rule like this (real case):

  Name: CCTV

  IP address: 192.168.0.120

  Public Port: 80--> 80

  Private port: 80--> 80

  Tye of traffic: all

  Question: Where can I find this function in the WRT1900AC?

  Appreciate your help, my CCTV is not managed.

  Hi HappyLefty. That's how we have implemented simple Port Forwarding on Linksys routers. Will we know what you want to accomplish with the WRT1900AC? We would like to have a better understanding of your challenge with our camera so we can help you accordingly.

• Setting up Port Forwarding on router WRT54G, working with a WVC54GCA Wireless CAmers

  I have the equipment in question and you need to know a few things when it come to put in place for Internet access. Before I aske the question, however, I have the following IP addresses associated with this project: WVC54GCA - 192.168.2.102, router WRT54G - 192.168.2.1, the questions are:

  1. How do you define Port Forwarding on every element.
  2. Should the two articles have static IP addresses.
  3. Once the port forwarding is set, what is the structure of the URL to access the camera?

  Any help would be appreciated, summer tear my hair on it. Seems simple, but obviously not. I'm missing something.

  Thank you

  For port forwarding, you will first need to set the camera to a fixed LAN IP address (static).

  If your router uses the range of 192.168.2.100 thanks 192.168.2.149 DHCP servers, then 192.168.2.102 is an unauthorised fixed address.  With the Linksys routers, any fixed LAN IP address must be outside the range of the DHCP server.

  Here are the rules of use of the fixed LAN IP addresses with Linksys routers.  (Note: these rules were written for the 192.168.1.x subnet.)  Since you're using the 192.168.2.x subnet, change all addresses accordingly):

  With Linksys, routers, a fixed (static) IP LAN addresses must be assigned in the device that uses the address. If you need to enter the fixed address to the computer, printer or camera, not in the router.

  When you use a Linksys router, any fixed LAN IP address must be outside the DHCP server rank (typically 192.168.1.100 thru 192.168.1.149), and may not end with 0, 1 and 255.

  That's why any fixed LAN IP address would normally be of the order of
  192.168.1.2 thru 192.168.1.99 or
  192.168.1.150 thru 192.168.1.254
  assuming that you always use the default DHCP server line.

  In addition, in the computer, when you configure a static LAN IP address, you need to set the "Subnet mask" 255.255.255.0 and the 'default gateway' on 192.168.1.1 and "DNS server" to 192.168.1.1.  Note that some network devices can not use server proxy DNS at 192.168.1.1.  In this case, the value "DNS server" your real address of Internet DNS server (found in the router when connected to the Internet).

  It is also important that the same value static LAN IP address no two devices on your network.

  **********************

  After you gave your camera at a fixed LAN IP address, then go in "Port Redirection" in the router and configuring the ports one (or more) to the address LAN IP fixed camera.

  In order to access your camera from the Internet, you will need to either:

  (1) get a fixed Internet IP address (static) address from your ISP and configure your router to use this address, or

  (2) use a free service such as DDNS.  DDNS allows you to use a dynamic Internet IP address, but can connect you by using the same URL.

  I hope this helps.

• WRT310N - Port forwarding problems.

  Problem is that it doesn't.

  I have a series of 600 Zyzel DSL Modem/Router in passthrough mode.  Everything works well.   PC on the network have no problem out etc... but I have several webcams wireless I can't access from the internet.  LAN has no problem.  I've set up port forwarding and nothing.   I can't access anything whatsoever for that set up the transfer.  I've updated the firmware, I toggle etc etc and nothing seems to work.   I'll guess it's maybe something with the pull-out decision, but that's just a guess... gut feeling.  I had an older router on the network before but got this new, but he wasn't in passthrough mode, I just used it as an access point for the wireless.    I guess that I couldn't take off passthrough and test, but not at home so I can't do it right now.

  Anyone aware of issues like this?   Does not much feel... all eyes right configuration.

  And he who responds, you can talk shop, I'm a blade L3 technician and an engineer of SAN...  That is, I know my way around computers and networks.

  Figured it out... ID10T...   Problem was, indeed, the devices themselves.   Because of the way I had the network installation before that all wireless devices had the wrong IP to the new access point.  Once I fixed that the transmission was successful.

  In addition, I kept the DDWRT firmware, it's so much better than the version of Linksys, it's not even funny.  (Wonder if they delete this because of me saying that...) I had problems of resistance low signal 30 feet away from the other side of the House... questions to xbox 360 streaming.  Once I have updated the DDWRT firmware the intensity of the signal went to full and streaming on the 360 problems disappeared.

• Problems with WRT610N v2 + WAG54GS v1.0 of port forwarding

  Background:

  I have a WAG54GS v1.0 (Appendix A) that I use to manage my home network and my ADSL connection. I bought a WRT610N v2 (which I will refer to as the router) with the intention that he would replace the functions of networking of the WAG54GS (which I will call the modem), who could be relegated to handling just the Internet connection. Both are running their latest firmware.

  I got this configuration to work, but with a problem: I lost a lot of flexibility with regard to port forwarding. The problem is the only way I managed to get the Internet to work with the 192.168.0.1 router and the modem to 192.168.1.1. If I try and that you have both 192.168.0.x or 192.168.1.x then connect to Internet no longer works under any configuration options, I've tried.

  What wants to say that when I go to port forwarding of installation in the modem, I can only forward to clients on 192.168.1.x, but the router can only transmit to 192.168.0.x. The only things that I can go to work are situations where triggering serial port can be applied, so that when a connection is made to the relevant port to an external IP address, and then this external IP address to communicate on this port. As you can guess this covers almost all cases.

  Question:

  Would it not be possible to have the router and the modem on 192.168.0.x or 192.168.1.x, allowing port translation work as expected. Which should in principle be possible with the modem bridge mode except that it is impossible to configure the PPPoA settings needed to connect to my ISP.

  Or I'll have to rethink the configuration of the network (i.e. buy a dedicated ADSL modem and remove entirely my WAG54GS?)

  In fact in the end what I figured out was that according to my WRT610N concerned my WAG54GS is my ISP and that was all he needed to know on the Internet connection. So I had to connect to the WAG54GS with an IP address static, stuck that IP in the DMZ of the WAG54GS and left the WRT610N to manage port forwarding like all devices that connect will make it through that. (Yes, I've disabled features wireless of the WAG54GS)

  I'm reasonably sure that I tried the combination of settings you suggested (including moving the WAG54GS off the Internet port on the WRT610N, which I wanted to avoid in any case as I have four devices permanently connected in any case) and found that it still does not. And I wasn't saying two to 192.168.1.1 set at any point, my darkened auto focus was that change only the last block of the IP address doesn't have to work for Internet access.