Opening ports on cascading routers

hello everyone this is my first time here so hopefully I'll post up all the info you need the first time. I have 2 wrt54g routers cascading off of each other. The first wrt54g(#1) is connected directly to my cable modem the wrt54g(#2) is connected to wrt54g(#1) by a cable running from the Lan port on wrt54g(#1) to the WAN port on wrt54g(#2). All devices connected to both routers work fine except my Xbox360 that's connected to my wrt54g(#2). I can get onto xbox live but my Nat setttings are set to moderate keeping me from finding alot of games online. What I need to do is get ports 3074 & 88 open but I can't figure out how to do this with the cascading routers. How would I go about opening those ports? Do I need to give you more information?

As you have 2 Wireless Router and they are setup in a 2 Different Networks, If you open the ports on your 2nd router, your 1st Router will Block the Ports for XBOX. So i think in this case you need to Open the Ports on your Both the Routers.
First you need to login to your 2nd Router setup page, click Here and this will guide you how to enable port forwarding on your router for XBOX. 
Once you do the settings on your 2nd router, now you need to login to the 1st router setup page and again you need to do the Port tirgerring and click on save settings. Now check if you are able to play and join the games on your XBOX. I might think this should solve the problem. 

Similar Messages

  • I have a game on my xbox one that is telling me I need to open ports in order to play it I am not all that tech savvy and have no idea how to do this

    I have an airport extreme and I am trying to play a new game on my xbox one and it keeps kicking me I have comcast internet that is more than fast enough so I went to the games site and it says I need to either create a static ip or to open ports no idea how to do either of these or what that does any help would be appreciated.

    There are heaps of posts here about how to open ports on apple routers specifically for xboxes.
    AirPort Extreme and xbox 360

  • I need to open ports, and nothing I've read seems to help me

    I have an aiport express, it's my only router.  it's connected directly to my cable modem (TWC).  I have no firewall for incoming (there's no options for outgoing) no matter what combination of settings I use, I can't seem to get more than port 5000 open. Why 5000?  and why can't I get any other port open?

    There are heaps of posts here about how to open ports on apple routers specifically for xboxes.
    AirPort Extreme and xbox 360

  • Open ports on new airport extreme to play online games

    hey, i have the new airport extreme and i wanna play online games.
    how do i open ports with the utily that came on disk.
    i have no clue how to configure it.
    i tried in bridge mode, but than the airport starts flashing amber and other users in house wanna surf on the net aswel.
    kind regards

    Airport Utility -> Manual setup (Cmd+L)
    Internet -> NAT
    Enable a default host
    Then in Internet -> DHCP
    permanently assign the default host IP to the machine you're going to play the games on.
    This is what other routers call the "DMZ" address. Be sure to run a firewall on that machine!

  • Open port issues with Direct Print functionality

    Hi, I have been fighting with HP call support about the Photosmart 7525 printer.
    Originally I setup and had performed all the functions to enable both web support and WIFI.
    Within an hour the printer would not respond to wireless communication, though it had its wireless indecator showing it was connected.
    I was told by HP support that the issue will be resolved in March, as there will be a firmware update to fix the issue.
    Now that I had the printer install the new firmware I still get the issue.
    Though I found through some sniffing, that there are a number of ports enabled and open that are over and beyond print requirements.
    Funny thing I can send my printer into instant lockup with all lights flashing with a simple UDP ping sniff. I would think I can do this with other new HP printers using Eprint functions. I will find HP web based printers that are open for public printing and test my theory that HP Eprinters are open to hacking and denyal of service attempts.  My Hp print app on andriod list three in my area, and one is at my local Walmart. This would be cool to find this, as I am usually not the first to point such matters out.
    I assume some are for Apple devices to print.
    Here is my sniffing report:
    Starting Nmap 6.40 ( http://nmap.org ) at 2014-03-21 07:57 Central Daylight TimeNSE: Loaded 110 scripts for scanning.NSE: Script Pre-scanning.Initiating ARP Ping Scan at 07:57Scanning 192.168.223.1 [1 port]Completed ARP Ping Scan at 07:57, 0.23s elapsed (1 total hosts)Initiating Parallel DNS resolution of 1 host. at 07:57Completed Parallel DNS resolution of 1 host. at 07:58, 16.50s elapsedInitiating SYN Stealth Scan at 07:58Scanning 192.168.223.1 [1000 ports]Discovered open port 445/tcp on 192.168.223.1Discovered open port 139/tcp on 192.168.223.1Discovered open port 80/tcp on 192.168.223.1Discovered open port 443/tcp on 192.168.223.1Discovered open port 8080/tcp on 192.168.223.1Discovered open port 9220/tcp on 192.168.223.1Discovered open port 6839/tcp on 192.168.223.1Discovered open port 631/tcp on 192.168.223.1Discovered open port 7435/tcp on 192.168.223.1Discovered open port 8089/tcp on 192.168.223.1Discovered open port 9100/tcp on 192.168.223.1Completed SYN Stealth Scan at 07:58, 1.71s elapsed (1000 total ports)Initiating UDP Scan at 07:58Scanning 192.168.223.1 [1000 ports]Discovered open port 5353/udp on 192.168.223.1Completed UDP Scan at 07:58, 1.82s elapsed (1000 total ports)Initiating Service scan at 07:58Scanning 20 services on 192.168.223.1Discovered open port 161/udp on 192.168.223.1Discovered open|filtered port 161/udp on 192.168.223.1 is actually open
    Starting Nmap 6.40 ( http://nmap.org ) at 2014-03-21 07:51 Central Daylight TimeNmap scan report for 192.168.223.1Host is up (0.0025s latency).Not shown: 93 closed portsPORT     STATE SERVICE     VERSION80/tcp   open  http        HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)139/tcp  open  tcpwrapped443/tcp  open  ssl/http    HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)445/tcp  open  netbios-ssn631/tcp  open  http        HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)8080/tcp open  http        HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)9100/tcp open  jetdirect?MAC Address: A03:C1:BD:C8:34 (Unknown)Device type: printer|general purposeRunning: HP embedded, Wind River VxWorksOS CPE: cpe:/h:hp:laserjet_cm1415fnw cpe:/h:hp:laserjet_cp1525nw cpe:/h:hp:laserjet_1536dnf cpe:/o:windriver:vxworksOS details: HP LaserJet CM1415fnw, CP1525nw, or 1536dnf printer, VxWorksNetwork Distance: 1 hopService Info: Device: printer; CPE: cpe:/h:hphotosmart_7520OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .Nmap done: 1 IP address (1 host up) scanned in 34.11 seconds

    OK now I am able to run a full scan on TCP ports without causing a lock up of the printer.
    I found that having the printer connect to a router that has been setup to use channel 5, 6 or 7 will cause port scanning issues with the printer.
    It is obvious that there are 18 ports that are seen as open, whether they are used or not. Two of which are active but have no service connected to them. Some are just dead like port 25, but over half are active enough to recieve data and lock network connectivity within the printer.
    As the firmware states some other laser jets may be affected depending on how the configuration can be set.
    I moved my routers channel to channel 1 as it is the only other option I have in a highly congested location. It is not as good as channel 6, but the printer seems to have channel 6 locked in for direct printing.
    Here is the latest full scan with UDP enabled, it is the furthest and most complete scan I am able to complete, with UDP ports enabled. The TCP port scan has a bit more and I have placed a simple list below the information given here:
    Starting Nmap 6.40 ( http://nmap.org ) at 2014-03-21 13:27 Central Daylight Time
    NSE: Loaded 110 scripts for scanning.
    NSE: Script Pre-scanning.
    Initiating ARP Ping Scan at 13:27
    Scanning 192.168.1.211 [1 port]
    Completed ARP Ping Scan at 13:27, 0.44s elapsed (1 total hosts)
    Initiating Parallel DNS resolution of 1 host. at 13:27
    Completed Parallel DNS resolution of 1 host. at 13:27, 0.03s elapsed
    Initiating SYN Stealth Scan at 13:27
    Scanning 192.168.1.211 [1000 ports]
    Discovered open port 443/tcp on 192.168.1.211
    Discovered open port 80/tcp on 192.168.1.211
    Discovered open port 139/tcp on 192.168.1.211
    Discovered open port 8080/tcp on 192.168.1.211
    Discovered open port 445/tcp on 192.168.1.211
    Discovered open port 631/tcp on 192.168.1.211
    Discovered open port 9100/tcp on 192.168.1.211
    Discovered open port 7435/tcp on 192.168.1.211
    Discovered open port 9220/tcp on 192.168.1.211
    Discovered open port 6839/tcp on 192.168.1.211
    Completed SYN Stealth Scan at 13:27, 5.25s elapsed (1000 total ports)
    Initiating UDP Scan at 13:27
    Scanning 192.168.1.211 [1000 ports]
    Discovered open port 137/udp on 192.168.1.211
    Completed UDP Scan at 13:27, 4.46s elapsed (1000 total ports)
    Initiating Service scan at 13:27
    Scanning 16 services on 192.168.1.211
    Discovered open port 161/udp on 192.168.1.211
    Discovered open|filtered port 161/udp on 192.168.1.211 is actually open
    Completed Service scan at 13:29, 82.51s elapsed (17 services on 1 host)
    Initiating OS detection (try #1) against 192.168.1.211
    NSE: Script scanning 192.168.1.211.
    Initiating NSE at 13:29
    Completed NSE at 13:30, 82.29s elapsed
    Nmap scan report for 192.168.1.211
    Host is up (0.023s latency).
    Not shown: 1983 closed ports
    PORT     STATE         SERVICE      VERSION
    80/tcp   open          http         HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)
    |_http-favicon: Unknown favicon MD5: 76C6E492CB8CC73A2A50D62176F205C9
    | http-methods: GET POST PUT DELETE
    | Potentially risky methods: PUT DELETE
    |_See http://nmap.org/nsedoc/scripts/http-methods.html
    |_http-title: Site doesn't have a title (text/html).
    139/tcp  open          tcpwrapped
    443/tcp  open          ssl/http     HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)
    |_http-favicon: Unknown favicon MD5: 76C6E492CB8CC73A2A50D62176F205C9
    | http-methods: GET POST PUT DELETE
    | Potentially risky methods: PUT DELETE
    |_See http://nmap.org/nsedoc/scripts/http-methods.html
    |_http-title: Site doesn't have a title (text/html).
    | ssl-cert: Subject: commonName=HPPS7525/organizationName=HP/stateOrProvinceName=Washington/countryName=US
    | Issuer: commonName=HPPS7525/organizationName=HP/stateOrProvinceName=Washington/countryName=US
    | Public Key type: rsa
    | Public Key bits: 1024
    | Not valid before: 2014-02-25T10:12:24+00:00
    | Not valid after:  2034-02-20T10:12:24+00:00
    | MD5:   9144 ca3b 557e 09cc aba0 8387 2732 2375
    |_SHA-1: a6b2 95c0 b72a 7201 578c 32de 662a e6fe b082 48ca
    |_ssl-date: 2014-03-21T13:30:09+00:00; -4h59m12s from local time.
    445/tcp  open          netbios-ssn
    631/tcp  open          http         HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)
    | http-methods: GET POST PUT DELETE
    | Potentially risky methods: PUT DELETE
    |_See http://nmap.org/nsedoc/scripts/http-methods.html
    6839/tcp open          tcpwrapped
    7435/tcp open          tcpwrapped
    8080/tcp open          http         HP Photosmart 7520 series printer http config (Serial TH3AS711XZ05YZ)
    |_http-favicon: Unknown favicon MD5: 76C6E492CB8CC73A2A50D62176F205C9
    | http-methods: GET POST PUT DELETE
    | Potentially risky methods: PUT DELETE
    |_See http://nmap.org/nsedoc/scripts/http-methods.html
    |_http-title: Site doesn't have a title (text/html).
    9100/tcp open          jetdirect?
    9220/tcp open          hp-gsg       HP Generic Scan Gateway 1.0
    137/udp  open          netbios-ns   Samba nmbd (workgroup: HPPS7525)
    138/udp  open|filtered netbios-dgm
    161/udp  open          snmp         SNMPv1 server (public)
    | snmp-hh3c-logins:
    |_  baseoid: 1.3.6.1.4.1.25506.2.12.1.1.1
    | snmp-interfaces:
    |   Wifi0
    |     IP address: 192.168.1.211  Netmask: 255.255.255.0
    |     MAC address: a0:d3:c1:bd:c8:32 (Unknown)
    |     Type: ethernetCsmacd  Speed: 10 Mbps
    |     Status: up
    |_    Traffic stats: 6.16 Mb sent, 3.43 Mb received
    | snmp-netstat:
    |   TCP  0.0.0.0:7435         0.0.0.0:0
    |   TCP  192.168.1.211:56076  15.201.145.52:5222
    |   UDP  0.0.0.0:3702         *:*
    |   UDP  127.0.0.1:666        *:*
    |_  UDP  192.168.223.1:67     *:*
    | snmp-sysdescr: HP ETHERNET MULTI-ENVIRONMENT
    |_  System uptime: 0 days, 3:34:23.28 (1286328 timeticks)
    | snmp-win32-shares:
    |_  baseoid: 1.3.6.1.4.1.77.1.2.27
    1022/udp open|filtered exp2
    1023/udp open|filtered unknown
    3702/udp open|filtered ws-discovery
    5355/udp open|filtered llmnr
    MAC Address: A03:C1:BD:C8:32 (Unknown)
    Device type: general purpose
    Running: Wind River VxWorks
    OS CPE: cpe:/o:windriver:vxworks
    OS details: VxWorks
    Uptime guess: 0.150 days (since Fri Mar 21 09:55:04 2014)
    Network Distance: 1 hop
    TCP Sequence Prediction: Difficulty=255 (Good luck!)
    IP ID Sequence Generation: Busy server or unknown class
    Service Info: Hosts: HPA0D3C1BDC832, HPPS7525; Device: printer; CPE: cpe:/h:hphotosmart_7520
    Host script results:
    | nbstat:
    |   NetBIOS name: HPA0D3C1BDC832, NetBIOS user: <unknown>, NetBIOS MAC: <unknown>
    |   Names
    |     HPA0D3C1BDC832<00>   Flags: <unique><active><permanent>
    |     MSHOME<00>           Flags: <group><active><permanent>
    |     HPA0D3C1BDC832<20>   Flags: <unique><active><permanent>
    |     HPPS7525<00>         Flags: <unique><active><permanent>
    |_    HPPS7525<20>         Flags: <unique><active><permanent>
    | smb-security-mode:
    |   Account that was used for smb scripts: guest
    |   User-level authentication
    |   SMB Security: Challenge/response passwords supported
    |_  Message signing disabled (dangerous, but default)
    TRACEROUTE
    HOP RTT      ADDRESS
    1   23.26 ms 192.168.1.211
    NSE: Script Post-scanning.
    Read data files from: F:\Progs\Nmap
    OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
    Nmap done: 1 IP address (1 host up) scanned in 180.90 seconds
               Raw packets sent: 2030 (74.829KB) | Rcvd: 2921 (149.377KB)
    +++++++++++++++++++++++++++++++++++++++++++++++++++++===
    Full TCP port scan without UDP scanning of all ports, showing up as open... * designates open and active.
    192.168.223.1Discovered open port 25/tcp on
    *192.168.223.1Discovered open port 80/tcp on
    *192.168.223.1Discovered open port 110/tcp on
    *192.168.223.1Discovered open port 119/tcp on
    *192.168.223.1Discovered open port 139/tcp on
    192.168.223.1Discovered open port 143/tcp on
    *192.168.223.1Discovered open port 443/tcp on
    *192.168.223.1Discovered open port 445/tcp on
    192.168.223.1Discovered open port 465/tcp on
    192.168.223.1Discovered open port 563/tcp on
    192.168.223.1Discovered open port 587/tcp on
    *192.168.223.1Discovered open port 631/tcp on
    192.168.223.1Discovered open port 993/tcp on
    192.168.223.1Discovered open port 995/tcp on
    *192.168.223.1Discovered open port 7435/tcp on
    *192.168.223.1Discovered open port 6839/tcp on
    *192.168.223.1Discovered open port 8080/tcp on
    192.168.223.1Discovered open port 8089/tcp on
    *192.168.223.1Discovered open port 9100/tcp on
    *192.168.223.1Discovered open port 9220/tcp on

  • Home Hub 5 - Impossible To Open Ports

    Greetings, I really hope someone will be able to help me out with this, and I will try and keep things relatively short.
    I have just had my new HH5 sent out to me as a result of not being able to use my own third party router with BT TV. Even as the customer service agent was explaining the features of the HH5 I knew I was going to encounter countless issues with opening ports for online gaming with my PC (thats why I had purchased my Netgear router), however as mentioned, the BT TV side of things has left me with no choice but to get the HH5.
    After setting up the HH5 with my BT Infinity everything works great, with just one setback, the port forwarding features do not actually open the ports even though I have created new rules within the HH5, as I still have moderate NAT when trying to play games online. I have tried every different method available to get the ports open but it simply is not happening.
    I have spoken tech support and received the usual responses of "we do not help with port forwarding" and "you need a PC expert to help you with this".
    So as a last resort I have signed up to the BT forum in the hopes of finding someone who may be able to help me get things setup with opening up the moderate NAT that just wil not go away. I know there are countless other threads with similar problems but from what I have seen none are related to the HH5.
    Thanks in advance!

    If you are not using the multicast channels, then your Netgear should work wit BT Vision, with a slight change.
    Using BT Vision with other routers
    If you are using multicast, then anothe router may be needed.
    Known Routers to Work with Multicast/IGMP
    There are some useful help pages here, for BT Broadband customers only, on my personal website.
    BT Broadband customers - help with broadband, WiFi, networking, e-mail and phones.

  • DMZ and open ports

    Hi all!
    This is my first post on this forum I've been tinkering around with honey pots and set one up on my home network. A tutorial I was following mentioned about putting it in the DMZ. So I did. When I was at work I conducted a nmap scan of my home router. SO MANY OPEN PORTS! Of course setting up a DMZ this is to be expected. HH being HH only the honeypot is in it but I'm a little worried that even though I have only put the honey pot in the DMZ, are all the opened ports open to the rest of my network? As I understad it I am wrong but I am concerned just want to double check! Also when I turned of the DMZ and did another scan I found port 4567 to be open. I quick search flagged up a few results. Many people seem to say ignore it but others have said its possible for to be a back door. If I type in my public ip:4567 I get faced with a login page! I have heard that BT install a backdoor on their routers for the NSA and GCHQ normally I'd fob such things off but would be interested to know what is going on with that open port! 
    Thanks in advance guys!

    When you have anchor/foreign, the web auth traffic always go to the anchor, so  with CWA, the traffic from the anchor to the ISE will need to be permitted . go through the following link this may of help
    https://supportforums.cisco.com/docs/DOC-26442

  • Opening port on ultraline series 3 model 9100 em??

    I have the ultraline series 3 model 9100 em. I was trying to configure it to open port 5900 (so I can use Mocha VNC on my phone). Can anyone advise how? I attempted to look at portforward.com but can't locate this particular router.  I spent an hour yesterday being transferred from india, to tx, back to india...and nobody could get me to tech support...which usually is hit or miss anyways depending on who you get.
    Can anyone here help me out, or point me to another site? I've done this on other routers (linksys) but it has been so long, and the layout of this particular router has me perplexed.  
    Thanks!

    After you log-in to this router, show the first screen that you see.
    While you do not see a guide for the ultraline series 3 model 9100 em there, the screens of your router may be close to the screens of another router guide that they provide.
    ^^
    If you are the original poster (OP) and your issue is solved, please remember to click the "Solution?" button so that others can more easily find it. If anyone has been helpful to you, please show your appreciation by clicking the "Kudos" button.

  • Cascaded routers: no internet access when second router not use NAT

    Cascaded routers: no internet access when second router not use NAT
    Here is my setup:
    [pre]
    WAN
    |
    | 74.96.170.x (WAN IP)         |
    | Router1(Verizon FiOS Router) |
    | Model: MI424WR-GEN2 (Rev F)  |
    | Firmware: 20.21.0.2          |
    | Def router: 74.96.170.1      |
    | 192.168.1.1 (Local IP)       |
    |
    |  192.168.1.22 (WAN IP)   |
    |  Router2(Linksys)        |
    |  Model: WRT54GL v1.1     |
    |  Firmware: v4.30.16      |
    |  Def Router: 192.168.1.1 |
    |  192.168.2.1 (Local IP)  |
    |
    | Computer 192.168.2.160   |
    | Def Router: 192.168.2.1  |
    "q.route" 120L, 4441C written
    [m.wang@m-wang-ltm2:/Users/m.wang/m/Network]
    $ more q.route 
    Cascaded routers: no internet access when second router not use NAT
    Here is my setup:
    [pre]
    WAN 

    | 74.96.170.x (WAN IP)         | 
    | Router1(Verizon FiOS Router) | 
    | Model: MI424WR-GEN2 (Rev F)  | 
    | Firmware: 20.21.0.2          |
    | Def router: 74.96.170.1      |
    | 192.168.1.1 (Local IP)       | 
    |
    |  192.168.1.22 (WAN IP)   | 
    |  Router2(Linksys)        | 
    |  Model: WRT54GL v1.1     |
    |  Firmware: v4.30.16      |
    |  Def Router: 192.168.1.1 |
    |  192.168.2.1 (Local IP)  |
    |
    | Computer 192.168.2.160   | 
    | Def Router: 192.168.2.1  | 
    | NO iptables, basic setup |
    [/pre]
    On computer, I have:
    [pre]
    # route
    Kernel IP routing table
    Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
    default         192.168.2.1     0.0.0.0         UG    2      0        0 enp2s0
    loopback        localhost       255.0.0.0       UG    0      0        0 lo
    192.168.2.0     *               255.255.255.0   U     0      0        0 enp2s0
    [/pre]
    On Router2, I have:
    [pre]
    Routing Table Entry List
    Destination LAN IP | Subnet Mask   | Gateway   | Hop Count | Interface
    192.168.2.0          255.255.255.0   0.0.0.0     1           LAN & Wireless
    192.168.1.0          255.255.255.0   0.0.0.0     1           WAN (Internet)
    0.0.0.0              0.0.0.0         192.168.1.1 1           WAN (Internet)
    [/pre]
    Router2's Operating Mode is Gateway. On Router1, I have: 
    [pre]
    [Router1] Routing Table
    Name                  Destination Gateway      Netmask       Metric   Status
    Network (Home/Office) 192.168.2.0 192.168.1.22 255.255.255.0 0        Applied 
    Network (Home/Office) 192.168.1.0 192.168.1.1  255.255.255.0 0        Applied 
    Routing Protocol: Internet Group Management Protocol (IGMP)
    Default Gateway: 74.96.170.1
    [/pre]
    On computer, I can run tcptraceroute to yahoo.com OK:
    [pre]
    # tcptraceroute yahoo.com
    Selected device enp2s0, address 192.168.2.160, port 46596 for outgoing packets
    Tracing the path to yahoo.com (206.190.36.45) on TCP port 80 (http), 30 hops max
     1  192.168.2.1  0.610 ms  0.729 ms  0.735 ms
     2  192.168.1.1  1.843 ms  1.378 ms  1.363 ms
     3  l100.washdc-vfttp-107.verizon-gni.net (96.241.146.1)  13.620 ms * *
    ... /* It reached the destination. */
    [/pre]
    I want to change Router2's Operating Mode from "Gateway" to "Router" because I
    want to turn off NAT on Router2 so that I can access all computers attached to
    Router2 by their individual IP instead of using port forwarding at Router2.
    The problem is after the mode change from "Gateway" to "Router", and regardless
    whether I disable RIP or enable RIP, and on what interfaces it is enabled, computer
    192.168.2.160 does not have internet connection. 
    Observations:
    [0] INTRAnet works as I can reach computer 192.168.2.160 from computer behind Router1
    192.168.1.x and vice versa.
    [1] ping and traceroute *work* on Router2 itself using the built-in dianostic tool.
    [2] nslookup on computer 192.168.2.160 always works on new lookup. It uses
    192.168.2.1 as the resolver.
    [3] tcptraceroute stops after step 2:
    [pre]
    # tcptraceroute yahoo.com
    Selected device enp2s0, address 192.168.2.160, port 45999 for outgoing packets
    Tracing the path to yahoo.com (98.139.183.24) on TCP port 80 (http), 30 hops max
     1  192.168.2.1  2.553 ms  0.534 ms  0.638 ms
     2  192.168.1.1  1.342 ms  0.964 ms  0.867 ms
     3  * * *
    [/pre]
    [4] tcpdump shows that computer 192.168.2.160 tries to reach out and nothing is returned:
    [pre]
    13:34:03.172828 IP 192.168.2.160.45999 > 98.139.183.24.http: Flags [S], seq 1122548929, win 0, length 0
    13:34:06.175786 IP 192.168.2.160.45999 > 98.139.183.24.http: Flags [S], seq 1122548929, win 0, length 0
    13:34:09.178804 IP 192.168.2.160.45999 > 98.139.183.24.http: Flags [S], seq 1122548929, win 0, length 0
    [/pre]
    This is not expected because NAT to internet should still be done by Router1, no? Computer
    behind Router1 with IP 192.168.1.x has internet connection.
    [5] It looks like I cannot change the Routing Table Entry on Router2. I do not think I need to change anything,
    just an observation.
    [6] If I use LAN to LAN connection, then both intranet and internet works. [The internet IP of Router2 can be
    anything not in the same subnet of the Router1, and DHCP on the local side should be disabled to avoid conflict
    with the the DHCP on Router1].

    I have a question. Unfortunately in order to ask my question, I have to have a lengthy description of my setup. Basically, I have a second Linksys router in "router" operating mode with NAT disabled connected to the Verizon router, and I have a computer which is in a different subnet (192.168.2.x) behind the Linksys router. This computer can communicate with computers behind Verizon router in subnet (192.168.1.x), but cannot reach internet. This is a simplified version of my question, full details are in the original post.
    If I setup the Linksys router in "gateway" operating mode, which means with NAT enabled, then both intranet and internet works, but there is no easy way to setup port forwarding for 10 compueters in 192.168.2.x network to communicate with 10 computers in 192.168.1.x network.
    If I setup the Linksys router in a LAN to LAN configuration with Verizon routers, but this way all computers are in the same subnet, I want them to be in different subnet for access control and things like that.
    I hope this makes things a little clear.
    Thanks.

  • Help Opening PORT 6112 for WarCraftIII Hosting

    I'm trying to help my son use WarCraftIII to host a game in our iMac G5, but no one can join. Successful hosting is supposed to be an issue of opening port 6112 but no success yet.
    What I have done so far:
    1) Set Linksys BEFSR41 router to forward port 6112 both ways. Contacted blizzard tech support today and they told me I needed to open the port in Linksys router by following instructions at http//:www.portforward.com for my router, and the WarCraft III game (fyi this is a very nice site, anyone with router setting issues should check it out). I went to the site, clicked on "Forward", found my router (Linksys BEFSR41v1.39)in the list below, then found my game WarCraft III in game list and followed instructions at this website: http://www.portforward.com/english/routers/portforwarding/Linksys/BEFSR41v1.40.2/WarcraftIII.htm
    2) Opened port 6112 in Mac OS FileSharing FireWall. I'm not so sure I got this part right. I went to System Prefs, File Sharing, FireWall and clicked New. Then I entered 6112 in both TCP and UDP (cause I don't know which it is) and selected Other and gave it the name WarcraftIII1 (used this name, because we were helping a friend set up his router (Linksys WRT54G) to pass 6112, and the portforward.com instructions had us enter that text in Application field for the port forwarding range: http://www.portforward.com/english/routers/portforwarding/Linksys/WRT54G/WarcraftIII.htm So, I figured this was as good a name as any to use in FireWall setting.
    Ideas I have not tried yet:
    1) Maybe I need to update my Linksys firmware? I noticed that the Portforward instructions were for Linksys firmware 1.40.2 My firmware is 1.39 (going to Linksys site I see there's a newer version v1.46.02 available). So, maybe I need to download and apply (but I don't want to screw up my current router settings - since the work! - and I'm figuring it's likely to lose all current settings with a firmware update).
    2) Maybe I need a different name in the FireWall port than "WarcraftIII1"? Maybe one of the pull-down options are what I should have used.
    Any help would be greatly appreciated!
    iMac G5   Mac OS X (10.4.6)   1.5 Gb RAM

    Hey Tim,
    Thanks for tip on preparing for firmware update. As it turns out, all settings were wiped when I did the update. But I like the approach of having 'clean' setup before update (sort of like running Disk Utility before and after new sofware installs).
    I tried turning off the Mac OS firewall, but it didn't help (so I don't think that's the root cause - but a good thing to test). Part of the www.portforward.com instructions for using my Linksys router with WarCraftIII include setting to DISABLE the "Block WAN Request" option. I don't know much about router security, but this makes me feel more vulnerable. So, I prefer to keep Mac OS firewall enabled, as long as it doesn't get in the way (also MacWorld's most recent issue recommended firewall ON, and activate Advanced settings turning ON options for Block UDP Traffic, and Enable Stealth Mode). Having my firewall set up in this way hasn't been any problem for me at all for past 1.5 yrs, until just recently when I tried hosting WarCraftIII Custom Game (reason I want to do that, is it allows my son to play online against only friends we know - call me overprotective, and I'll happily plead guilty). As a case in point, I was on the Battle.Net USEast Open Tech Support chat channel last night (you get to this from within the WarCraftIII application), asking if someone would do a quick test and join my Custom Game. During that brief interchange, one of the other people on the channel types in all caps "I want to f**k your mother" (without the *'s)". I'm thinking, yeah Custom Game is the way to go, I'd don't want my son out here with the likes of you. Thankfully, someone else agreed to the test. Unfortunately it failed.
    I think I've about got it beat though. I found on the blizzard.com support site, a way to use Terminal to run a traceroute by typing (without the quotes) "traceroute us.logon.worldofwarcraft.com > ~/Desktop/tracert.txt" and press the Return key. Previously I was getting all *'s back in the results (which means no recognized connections). Now, I'm getting IP addresses and ms timing for hops so it appears I'm getting through. http://www.blizzard.com/support/wow/?id=aww0827p5
    But, I've got to go and won't be able to test ability to join a Custom Game with my son's friend until later tonight.
    Thanks again. C

  • A question about opening ports

    I have a question about opening ports with the airport. I need to open up ports UDP 88 & 3074 and port TCP 3074. I am wondering if I should open these ports for the specific IP address on my network that will be using them or if I should open the ports on the gateway IP (10.0.1.1) not sure which is the right route to take. Any help would be appreciated.
    These are for running an xbox over xbox live.

    Typically, you will want to open these ports for the device on your local network that needs to be accessed from the Internet. In this case, it would be your Xbox 360.
    Unfortunately, the AirPorts are not listed as Xbox Live-compatible routers ... so there is no guarantee doing this will get Open NAT status for Xbox Live.
    The following web blog does a great job explaining the NAT issues with Xbox Live. Basically what it comes down to is that although you can get an Internet connection for the Xbox 360 with the AirPorts, you may not get the necessary NAT setting (Moderate or Open) for the Xbox Live game that you want to play. As such, Port mapping may be required to allow Xbox Live access.
    The following ports must be available for Xbox Live to operate correctly:
    • UDP 88
    • UDP 3074
    • TCP 3074
    To setup port mapping on an 802.11n AirPort Extreme Base Station (AEBSn), either connect to the AEBSn's wireless network or temporarily connect directly, using an Ethernet cable, to one of the LAN port of the AEBSn, and then use the AirPort Utility, in Manual Setup, to make these settings:
    1. Reserve a DHCP-provided IP address for the Xbox 360.
    Internet > DHCP tab
    o On the DHCP tab, click the "+" (Add) button to enter DHCP Reservations.
    o Description: <enter the desired description of the host device>
    o Reserve address by: MAC Address
    o Click Continue.
    o MAC Address: <enter the MAC hardware address of the Xbox>
    o IPv4 Address: <enter the desired IP address>
    o Click Done.
    2. Setup Port Mapping on the AEBSn.
    Advanced > Port Mapping tab
    o Click the "+" (Add) button
    o Service: <choose the appropriate service from the Service pop-up menu>
    o Public UDP Port(s): 88, 3074
    o Public TCP Port(s): 3074
    o Private IP Address: <enter the DHCP Reserved IP address for the Xbox you created earlier>
    o Private UDP Port(s): 88, 3074
    o Private TCP Port(s): 3074
    o Click "Continue"

  • Open port 80 on EA6900 AC1900

    Port 80 is closed I would like to open it...
    Also what ports are open buy default anyways....
    Regaurds,
    Will

    Hi william.mabey, by default port 80 is already open to Linksys routers. If you'd like to open ports, you need to access your Router page. However, there is a Linksys Smart-Wifi Outage going on, so you can't do this yet. Let's keep on checking the Linksys Post for an update. 

  • Confusion/frustration opening ports

    I better give the situation first.
    My brother and I play FFXI (Final Fantasy 11) on two computers.  We login and after about 5-10 minutes we get a time out error message.  Anyone who knows FFXI knows about R0 (recieving) and S0 (sending).  At the moment its our Sending signal that is droping and causing the time out error.
    I called Square Enix and was told we needed to open ports.  I figure that should be easy, so I go online and on their site find the list of ports to open.
    TCP:
     25, 80, 110, 443 or 50000 - 65535
    UDP:
    50000 - 65535
    So I login to the router admin after turning off norton and windows firewalls on all computers.  On the Port Triggering page there is not only the Port Triggering option but also Port Forwarding options.  From what I understand we dont' need Port Forwarding.  So I set up with this
    Aplication: PlayOnline (name on desktop icon actual file is pol.boot but doesn't work)
    Triggering range 25-65535 (was hoping to use one port range.)
    I left the Port Frowarding section alone and checked the "Enable" box and save settings.
    It didn't help.  I even enabled UPNP on both the router firewall and on the POL Settings, still didn't help.
    Any help on this is greatly appreciated.   I don't want to do a DMZ because we need ports for both computers open and eventually the 3rd (backup) incase one of these crash.  We are ready to scream.
    Message Edited by unacorn on 10-16-2007 08:34 PM

    No. Port triggering and port forwarding and DMZ are different ways how to open ports on the router to be used inside your network. There is always some kind of server involved in the LAN for that. A server in this sense can also be your game which opens various ports on your computer and listens for incoming traffic on those ports. But as you are running a router with network address translation (NAT) those open ports on the computer cannot be seen from the internet by default. Your computer has a private IP address 192.168.1.* which cannot be accessed directly from the internet. NAT maps the single public IP address to multiple private IP addresses. By default the router does drop any incoming traffic from the internet simply because it does not know where to send it. If a computer inside your LAN sends something out before, then the router will accept the returning answer and forwards it to the computer which send the data out before. But this only works if a computer inside first initiates the connection. If your computer on 192.168.1.50 connects to www.linksys.com the router remembers that it was 192.168.1.50 that connected to www.linksys.com and will forward the responds from www.linksys.com back to 192.168.1.50 (obviously this is a little bit simplified but the basics are correct).
    To accept unrelated traffic from the internet to get into your LAN and reach a computer you have to tell the router what it should do. That is port forwarding. If something arrives on port 25 it will always forward the traffic to a specific computer defined in the forwarding. This may be necessary in case in multi-player games where other people from other IP addresses have to send you something before you ever send something to them. That's an example when you need forwarding. Your game application on your computer is the "server" then because it listens/opens some ports on the computer which must be accessible from the internet for unrelated traffic. Otherwise unrelated incoming traffic is dropped.
    Port triggering is a way to dynamically add some port forwardings depending on previous outgoing traffic. For example, you can forward some port 2525 on traffic on port 25. This means if a computer inside the LAN connects to port 25 the router will dynamically establish incoming port forwarding on port 2525 to the same computer inside the LAN which used port 25 before. It depends on the router for how long this forwarding will be active. It also won't help you if you require the same port forwardings at the same time on two or more computers inside your LAN connecting to the same server in the internet. At any given time it is only possible to forward a port to a single computer inside the LAN.
    Connections from the LAN to internet servers are not affect by either port forwarding or port triggering. By default, any computer in the LAN can access any server at any port in the internet.
    Many ISPs only assign you a single public IP address. You cannot connect multiple computers or routers at the same time to the modem then. Check with your ISP if it is possible to connect multiple devices to the modem and get multiple public IP addresses.
    If you can I would think about whether you really want to get a second router or whether you simply connect both computers directly to the modem and use it that way. There is little benefit hooking up a second router with a second set of port forwardings.

  • Opening Port

    I've made client-server applications before that you can use between two different networks - like one house to another house. The problem is I always have to go into the router settings and edit port forwarding to open the ports... so my question is - is there any way to automatically open a port when a Java program runs rather than go into the router and do port forwarding? I know programs like LimeWire do it automatically, and I want to know if it's possible in Java.

    I've made client-server applications before that you
    can use between two different networks - like one
    house to another house. The problem is I always have
    to go into the router settings and edit port
    forwarding to open the ports... so my question is -
    is there any way to automatically open a port when a
    Java program runs rather than go into the router and
    do port forwarding? I know programs like LimeWire do
    it automatically, and I want to know if it's possible
    in Java.No they don't.
    Here is the way your router/firewall works.
    Applications running on your computer can open sockets to other computers on the "other side" of your router without specifically opening those ports.
    When computers on the other side want to open sockets to your computer then and only then is when you have to open/forward the port.
    This means that you restrict how computers coming out of the dark recesses of the internet can connect to your computer. Which is probably a good thing.
    When you open limewire it opens sockets from YOUR side. Not the other side.
    Now of course you can also set up your router/firewall to restrict outbound traffic as well. Why? Well so you can keep people from using Limewire or MSN messenger or whatever usually illegal and always timewasting widget they get their grubby little hands on.
    Anyway to make a long story short... you can't program your way into opening up ports on firewalls and when you think you are seeing that happen you are mistaken. If you doubt the veracity of this statement please consider this... if it were possible to programatically get firewalls/routers to open ports then nothing would ever be secure ever. And really what would be the point of even having a firewall.

  • How to forward/open ports for WRT54G?

    Hi. I recently bought a WRT54G because my old router was destroyed by lightening and thunder. I have managed to set it up, and got the interent itself to work with static IP adress (192.168.1.101 for my PC).
    However, even though I have tried to forward/open ports for applications like uTorrent and DC++ as well as Limewire, I have no luck. When I test if the ports are indeed opened, I get the result that they are not. Here are how my port forward setting looks like for utorrent. The port in the settings image is of course the same as in uTorrent.
    http://www.pictub.com/quickupload/01/untitled-1mb4wd.jpg
    I can't seem to open any ports, even though I have followed tutorials like the ones at portforward.com. I have the latest firmware for my router, as I flashed it when I got it. Help .

    Yes, I did .
    Anyways, look what I found in the uTorrent FAQ:
    1.7 Special note for users with Linksys WRT54G/GL/GS routers, there are severe problems with them when running any P2P application
    To fix it, they say one has to flash with a unofficial firmware, but I will rather get the money back and buy another router tomorrow. Thanks for the help anyways .

Maybe you are looking for