RV042 - Port forward/translation from ext to int

Hy,
I recently buy a CSRV042-EU. I need to make a translation port to acces remote some of my server on lan.
I use a primary WAN with static IP 83.166.XXX.XXX .The LAN has aprox. 30 clients.
I want to acces remote one of the computer from LAN, as example:
83.166.xxx.xxx:10101 -> 192.168.10.10, using 10101 as external port and 3389 as internal port for remote on 192.168.10.10 machine
83.166.xxx.xxx:10102 -> 192.168.10.11, using 10102 as external port and 3389 as internal port for remote on 192.168.10.11 machine
I don't konw how to do this forward because in Port Forward i cannot find the option to enter teh ext port and the int port.
Could you please help me with an example, how ca i make this forward?
Thank you !

I know it's been this long post, but I have the following question ...
I have several external IPs and would like to designate for each type of service.
eg:
200.0.0.1 => http => 10.0.0.2
200.0.0.2 => https => 10.0.0.1
How could this setting in RV?
Today I have two models in the network-to-VPN Gw Gw the RV016 and 042.
Regards,

Similar Messages

  • RV042 Port forwarding stops working when Firewall is enabled

    Hey all,
    I have a RV042 router on a single WAN and an internal LAN. I have configured port forwarding as follows:
    HTTP[TCP/80~80]->10.0.0.6
    HTTPS[TCP/443~443]->10.0.0.6
    IMAP[TCP/143~143]->10.0.0.5
    IMAP SSL[TCP/993~993]->10.0.0.5
    SMTP SSL[TCP/587~587]->10.0.0.5
    Everything works just fine when I have the firewall DISABLED. However, when I enable it the behaviour is erratic. 1 out of 10 attempts to connect to ANY port forwarded works. Almost all attempts time out.
    Notice that this happens even if using only the default firewall rules (which should be bypassed by the port forwarding as I read in other posts).
    My second try was to create firewall rules manually, overriding the default ones. I tried adding rules from source WAN1 (where my connection is) to ANY and to SINGLE IP's on every port. Nothing seems to work.
    I don't know what I'm doing wrong, this is really bugging me. I had to turn the firewall off so we can access our servers from outside the office. This shouldn't have to be done.
    Do you know anything I could try?
    Best regards,
    Theo
    EDIT:
    Just found out that my firewall is getting LOTS and LOTS of Blocked - SYN Flood entries. I think this is why we are having trouble with the firewall. Could this be the problem? I have no idea where all these SYN packets are coming from since they appear with spoofed IPs or come from different bots all over.

    Hi Theo, if you want to over ride the default state table, you need to first make firewall rules to block all access then make your permission rules.
    Such an example would be-
    Action Deny
    Service All
    Source interface WAN
    Source IP any
    Destination IP any
    Save
    Action Permit
    Service RDP
    Source interface WAN
    Source IP -xx.xx.xx.xx
    Destination IP - xx.xx.xx.xx
    Save
    As for your concern about the syn flood, it can be a likely cause of your problems. Does the logging facility of the router give any indications?
    -Tom
    Please mark answered for helpful posts

  • RV042 Port Forwarding bypassing ACL

    I have a RV042 with Port Forwarding configured for RDP. This Port Forwarding Rule is being applied before my ACL - so subnets that are not authorized through are being allowed in. Firmware version 4.0.0.07. Any help would be greatly appreciated.                  

    Hi Eric, the default state table may be the problem.
    Try to make an access rule something like-
    Action Deny
    Service All
    Source interface WAN
    Source IP any
    Destination IP any
    Save
    Action Permit
    Service RDP
    Source interface WAN
    Source IP -xx.xx.xx.xx
    Destination IP - xx.xx.xx.xx
    Save
    -Tom
    Please mark answered for helpful posts

  • RV042 Port Forwarding

    Router has latest firmware.  WAN1 connected, WAN2 not connected
    RDP 3389 & 3390 are forwarded and functioning correctly.  Port 8080 functions correctly when configured for Remote Management.  I have Port 8081 functioning as Remote Management currently.  I forward Port 8080 and it still remains blocked at the router?  I have tried all HTTP/HTTPS ports and they are blocked at the rounter as well

    Hello,
    Thank you for your reply,
    As a first step i am glad to know that what is done is enough and there is no step(s) missed.
    On my first comment, i mentioned that i am using the Linksys router on dual mode and not DMZ mode; does that have any relation with the current problem?
    Concerning firewall, firstly i disable the firewall on the Linksys router.
    Second, i configured a laptop with the application Xerver to act as a webserver on port 80. i tested accessing this laptop through a lan switch and test was ok.
    i tried the same test through the Linksys router where i connected this webserver laptop to a one of the lan ports of the Linksys router, and with the same config of port forwarding on the Linksys (i just modified ip address of the webserver to be the ip of the laptop) and tried to open http access through internet explorer to the ip of the Linksys router and test was negative. Test failed.
    So the problem is not related to a misconfig on the isa(firewall,..)
    So this indicates that there is a problem specifically in forwarding traffic from wan interface to lan interfaces. but i am not able to identify where this problem is.
    What do you advise?
    note: when i do enable remote mgt for the rv router, i get to the authentication screen of the rv router where i should enter username and password.
    thank you again,

  • RV042 port forwarding / routing

    Hello folks,
    I'm having a really hard time tring to set up port forwarding to my LAN. Let me explain a bit of how my enviroment is set up.
    RV042 -> MS-TMG (former ISA Server) -> LAN
    RV042 WAN IP: Public IP (Does not matter)
    RV042 LAN IP: 10.31.11.1
    TMG WAN: 10.31.11.2
    TMG LAN: 10.3.1.2
    I've set up a port forwarding directing port 3002/TCP to 10.31.11.2 (TMGWAN) so that TMG can redirect to my LAN, but when I look at TMG Log, I see that the packages have the destination address of TMG WAN (10.31.11.2).
    I don't know why RV042 is changing the destination address of the packages and for the TMG it seens that the packet is coming for him (wich is not true and it's not allowed).
    I can't port forward to my lan (10.31.1.x directly bacause of the webinterface does not allow this).
    I've also tried DMZ but the behavior is the same.
    I've also tried uPnP but the packages are not arriving at TMG...
    Here is the route table of RV042
    200.XXX
    255.255.255.255
    186..XXX
    40
    ppp0
    200..XXX
    255.255.255.255
    186..XXX
    40
    ppp0
    186..XXX
    255.255.255.255
    40
    ppp0
    186..XXX
    255.255.255.255
    45
    ipsec1
    189.XXX
    255.255.255.255
    40
    ppp0
    189.XXX
    255.255.255.255
    45
    ipsec1
    10.31.11.0
    255.255.255.0
    50
    ixp0
    10.31.3.0
    255.255.255.0
    186.213.76.1
    10
    ipsec1
    10.31.2.0
    255.255.255.0
    186.213.76.1
    10
    ipsec1
    10.31.1.0
    255.255.255.0
    10.31.11.2
    2
    ixp0
    10.31.1.0
    255.255.255.0
    50
    ixp0
    default
    0.0.0.0
    186.XXX
    40
    ppp0
    Does anyone have a clue how can I get this thing working?

    Hi Eric, the default state table may be the problem.
    Try to make an access rule something like-
    Action Deny
    Service All
    Source interface WAN
    Source IP any
    Destination IP any
    Save
    Action Permit
    Service RDP
    Source interface WAN
    Source IP -xx.xx.xx.xx
    Destination IP - xx.xx.xx.xx
    Save
    -Tom
    Please mark answered for helpful posts

  • RV042 port forwarding issue

    I have a RV042 using (for now), just the single WAN interface. I am trying to forward all packets to port 9000 from the WAN to a single IP address on the network.  I've set up both forwarding rules under Setup -> Forwarding and under the Firewall -> Access Rules.
    I cannot connect to my device from the outside world, however.  Is there something I'm missing?

    Scott,
    Can you please let me know if you are able to access the device via the local Lan IP Address with the required port number? Also, can you please let me know what firmware version you are running on the device?
    Thanks,
    Blake Mereby

  • EA 4500 - Port Forwarding Blocked from time to time

    I have my 4500 set up for Port Range Forwarding to enable access to a DVR.  I use two ports one for TCP and One for the Internet.
    TCP is 9010 and Internet is 8245. I set up the range to start and end on that port--ie  9010 to 9010.
    the system worked well for about a year but lately i can't connect to the DVR occasionally.  Rebooting the 4500 solves the problem until it happens again.
    Looking for ideas as to what may be causing it. and how to permanantly fix.

    philipmgross wrote:
    I have my 4500 set up for Port Range Forwarding to enable access to a DVR.  I use two ports one for TCP and One for the Internet.
    TCP is 9010 and Internet is 8245. I set up the range to start and end on that port--ie  9010 to 9010.
    the system worked well for about a year but lately i can't connect to the DVR occasionally.  Rebooting the 4500 solves the problem until it happens again.
    Looking for ideas as to what may be causing it. and how to permanantly fix.
    It's possible that it's related to mac address bug.  The mac address bug is unpredictable and hard to get rid of once you get it and usually returns.  The mac address bug affects those with DVRs more than others.  (yes, it affects the EA4500 too).
    http://community.linksys.com/t5/Wireless-Routers/EA6500-Multiple-devices-under-one-device/td-p/57231...
    Here's the thread for the EA4500 mac address bug (same bug):
    http://community.linksys.com/t5/Wireless-Routers/Unknown-device-on-network-Linksys-EA4500/td-p/50747...

  • Airport Express G getting Port Forwarding to work from Airport Extreme N

    I have an Airport Extreme N connected to a cable modem. I have an Airport Express G in another room, connected to a Local Ethernet Network. The AE G is setup as a WDS Remote to the AE N. Connectivity works and all is well.
    What doesn't work is when I try to forward ports from the AE N to a device/system connected (via ethernet) to the AE G. The kicker is the port forwards work from "inside" the network. Outside they don't. I have been able to forward ports to anything connected to the N directly or wirelessly.
    Any thoughts on what the proper configuration of the AE G or the AE N to get port forwarding to work from the AE N through to the clients of the AE G?
    I have DHCP, and the clients of the AE G are getting IP addresses and working as they should.

    I checked that. I can forward ports all day long to anything connected directly (or wirelessly) to the AE N. Anything connected to the AE G, ports won't forward. For some reason the AE G in bridge mode is not letting ports forward through.
    Thanks for responding, though.

  • Trouble with port forwarding, DHCP, VUZE, and downloading speed.

    I am using Vuze to download things. I have a slow download speed and yellow smiley face, indicating a NAT problem. I think I need to implement a port forwarding, but that requires a static IP address. My router and security is set up such that I CANNOT connect to the internet using a manual configuration--DHCP only. However, I always have the same IP address. This is because the wireless router--a Motorola SB900--will only recognize approved computers designated by the IP address.
    Can anyone advise on what to do next?

    Enmnm wrote:
    I am using Vuze to download things. I have a slow download speed and yellow smiley face, indicating a NAT problem.
    Here are two links that will rate your connection.
    http://www.speedtest.net/
    http://www.pingtest.net/
    You can try downloading directly from the terminal to see how fast one file downloads.
    Macintosh-HD -> Applications -> Utilities -> Terminal
    mac $ mkdir test
    mac $ cd test
    mac $ curl "http://www.apple.com" >see
      % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                     Dload  Upload   Total   Spent    Left  Speed
    100 11292  100 11292    0     0  22628      0 --:--:-- --:--:-- --:--:-- 62623
    mac $ cat see
    <!DOCTYPE html>
    <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en-us" lang="en-US">
    <head>
    ... clipped ...
    I think I need to implement a port forwarding, but that requires a static IP address. My router and security is set up such that I CANNOT connect to the internet using a manual configuration--DHCP only.
    you are dealing with two networks. There is a network between your computer and your router. There is a second network between your router and your ISP.
    Port-forwarding is from your router to your computer.
    http://www.portforward.com/english/routers/port_forwarding/Motorola/SBG900/Azure us.htm
    However, I always have the same IP address. This is because the wireless router--a Motorola SB900--will only recognize approved computers designated by the IP address.
    Can anyone advise on what to do next?
    You need to set Port-forwarding between your computer and your router. You will need a fixed IP address on a your Computer. There is to ways of doing this. You can set up a static IP address on your computer. A hack would be to add 10 or 20 to your IP address that your router gives out. For example if your router gives out 192.168.1.10 you of would add 10 to the ten giving 192.168.1.20. you need to make the addition to the right most number of which in the example is ten.
    The section way is . . . You can have your router a signed a fixed address based on your MAC address. ( Each Internet device has a fixed address that is called the MAC address. This is a different address than your IP address. the MAC address is assigned in the factory. )
    Another hack would be to Port-forward to the number your router assigned at random. If your Computer is the only computer on the router, the number should always be the same. It is a hack because this is not guaranteed.

  • OpenVPN IPv6 client, IPv4 server, Port forwarding?

    I'd like to use an anonymous VPN with OpenVPN, but my new ISP only gives IPv6 addresses and IPv4 only via DualStack lite (4in6).
    As a consequence, my machine is only reachable with IPv6 Port Forwarding.
    The VPN-Provider only supports IPv4.
    Now the question:
    Can I reach my machine through IPv6 Port forwarding with OpenVPN and get a static IPv4 and Port forwarding(v4) from him?
    As I see it:
    I should be able to establish a connection with the VPN. I get a static address and the provider is forwarding the ports. Because I made the connection TO him it doesn't matter which ports are open on my side. Right?
    Or is it the other way around, that both need ports that can be forwarded?

    I guess you mean forwarding from WAN (server) to LAN (client) (both static IPs)?
    (Server must be your Internet gw/router.)
    NAT requires the ipfw firewall running so you need to add these ports (TCP? and/or UDP?) to the "allowed in" list for the server public/WAN IP. Turn on logging of denied packets to see what happens.

  • Port Forwarding with Port Translation RV042, RV016, RV082

    This is a feature request for the Linksys RV series Routers.  Currently, it appears that the Cisco/Linksys RV042, RV082, and RV016 only support port forwarding and 1-to-1 Nat.  One item that I find very helpful with customers is port forwarding with port translation.  I am requesting that this feature be included with a future firmware relase for these RV series routers.
    Here is an example of the request.
    Take an incoming service request on a TCP or UDP destination port and forward it to an internal IP on a different TCP or UDP port.  For example, customer A wants to allow different machines on the internal network to receive Windows RDP connections inbound.  To make PC maintenance identical between the internal machines, the customer does not want to change the listening port for RDP on the individual PC workstations through the Windows Registry.  The customer also does not want to dedicate separate IP's to each machine in a 1-to-1 NAT setup.  The only option is to have remote connections to each of these PC's to use a different destination port.  So, for example, PC one could be reached on TCP port 5151, PC two on TCP port 5152, and PC three on port 5153.  This requres a firewall that is able to translate each of these connection requests to a different internal IP on the default RDP port (TCP 3389).  So, the following setup is required:
    Port Forwarding with Port Translation:
    Router External IP on TCP port 5151 ---> forwarded to PC One's internal IP on TCP 3389
    Router External IP on TCP port 5152 ---> forwarded to PC Two's internal IP on TCP 3389
    Router External IP on TCP port 5153 ---> forwarded to PC Three's internal IP on TCP 3389
    There are several comparable "small business" class router competitors to the RV042, RV082, and RV016 that will perform this port forwarding with port translation process without incident.  Unfortunately, these Cisco/Linksys small business routers will not accomplish this task currently.
    Please implement this feature in a future firmware release.
    Thanks!

    Excellent.  I see this now.  None of our customers actually use the UPNP feature, so we never realized that Port Forwarding with Port Translation features existed on this page along with the ability to enable or disable UPNP.
    Perhaps, in the future, this functionality could be moved to and incorporated into the port forwarding page which seems to be a more logical location.
    In either case I'm very happy to know that this feature is available on the RV's.
    Thanks for your assistance.

  • Port forwarding Cisco RV042 / RV042G

    Hi,
    we use three Cisco RV042 small Business Routers.
    The problem:
    We want to forward HTTPS on Wan-side to an other port than 443 on Lan-side.
    For example: Wan 217.44.55.66 port 443 to 192.168.0.5 port 5001
    There is only this option in RV042 : Forwarding -> Service HTTPS [TCP/443~443] to "IP-Adress" (also Port 443)
    but we need something like this:
    Forwarding -> Service HTTPS [TCP/443~443] to 192.168.0.5:5001
    How can I configure it ?
    Greetings from Germany
    Goetz Hartwig, ITUC GmbH

    Hi Ituconsult1
    My name is Mehdi from Cisco Technical Support, yes with RV042 we can translate the port 
    Please follow this steps:
    1. Please remove the rule of the port forwarding 
    2. Go to Setup under UPnP , service management and you will see external port and internal port so please configure external port to 443 and internal to 5001 and click add, please do not enable UPnP
    3. on the same page please choose the service you created and put the internal IP of the server server
    Please rate the post or mark it as answered to help other Cisco customers
    Greeting 
    Regards
    Mehdi

  • HT3546 How do I set up my air port extreme to do port forwarding? Running 10.7.4 I have a IP camera on my local wireless net work that I want to use from my iPhone 4s and other computers.

    How do I set up my air port extreme to do port forwarding? Running 10.7.4 I have a IP camera on my local wireless net work that I want to use from my iPhone 4s and other computers.

    In most cable systems, the router you have will plug into your modem and just work automatically. A NAT (Network Address Translation) router takes your external IP and hands out LAN (Local Area Network) based IPs. All of the devices you are working with right now should handle the change automatically unless you've changed from the default automatic configuration.
    The problem with your wireless end of this is that the iPhone is not yet 802.11n, only 802.11g. Because that router is not dual band, all of your wifi devices will be forced to slow down to 802.11g speeds. This won't matter much for each device that's connecting to the internet, as your bottleneck is still going to be there. Where you will see slowdowns is device to device connections, like transferring data between the devices.

  • RV042 vpn&port forwarding problems

    Hello,
    I spent a few days trying to configure  the RV042 router but I messed up. I need this router for VPN access on my  site and Port Forwarding to an internal web server. Apparently very  simple task, isn't it?
    So:
    1. PPTP is working fine but I need more than 5 concurrent accesses.
    2.  Quickvpn does not work when the DHCP server is checked  and I can't  access any computer from my lan. I have a DHCP server in my LAN but when  I'm conected through Quickvpn I never reach it. In the log file there  are messages like:
    Connection refused - Policy violation TCP 169.254.x.x->192.168.1.2 (DHCP server from my lan)
    3.  On Setup > Forwarding I added a Port Range Forwarding for HTTP port  80 to an internal IP address (192.168.1.x). I although added a firewall  access rule to allow traffic to Port 80 from any source interface and  any source IP to 192.168.1.x.
    From the internal LAN, using the WAN IP of the router,  the Port forwarding works but not form the outside, though in the log file of the router it appears to work:
    Connection Accepted TCP 208.64.252.230:33027->192.168.1.x:80 on ixp1
    What could I have done wrong?
    The  router is configured with a static address as a gateway and it has the  latest firmware 1.3.12.19-tm. The access rules are the default ones and  the one I added.
    Any help would be much apreciated.
    Thanks.

    Can't answer as to why QVPN fails when you enable DHCP on the router, but concidering your requirements it seems to be a moot point. So, you have a DHCP server on your network which I will guess is also running your Web service. If this is a Windows server does your current configuration allow you to enable PPTP on it? If so, that would solve the five user limit. You will need to turn off the PPTP server on the router and then forward port 1723 TCP to your server and you are done. As for your http access, remove any rule that you have in reference to "allow" port 80 connectivity to your web server. Not sure why but this tends to confuse the poor little things. Once you have verified that port 80 is active on the server via the LAN (which you already have) then you are done. If you are still not successful with the connection to the server from the WAN you may want to default the router and start over (lame I know).
    *** SORRY, just noticed that you stated that you added a "port range" forwarding rule. Remove that, and configure a UPnP rule for the same server instead. Do not know why they call it that, they just do. This is the same as configuring a single port forward they just call it something different. So just port forward 80 tcp to your server on 192.168.1.x and you are done.

  • LR214 port forwarding / port translation config issue

    I am trying to create multiple ssh tunnels through  LRT214 with portforwarding. - basic ssh tcp forwarding works fine :  I added new service TCP port 22; and than forwarded it from the WAN port to an internal server; - now I am trying to to forward 4 external tcp ports (I am port values values in 5xxxx  range) to four different intenal servers to standard port 22 on each: in portforwarding services I created 4 different TCP (WANip->internalserver[1-4]ip)  and created 4 forwarding entries;in port translation I created 4 port translations  port5xxx1->port22, port5xxx2->port22, etc..opened it all in firewall (tcp ports 5xxx[1-4] are open any to any) when I try connecting to one of 5xxxx ports from the outside I get 'connection refused', port scan shows for all 4 ports 'port closed' What am I missing ?  

    You can use Port Address Translation (PAT) to address your concern. Simply follow the steps below:  1. Add the Service port your device will be listening into. a. Configuration>Setup>Port Address Translationb. Click on Service Management. Service Management window will show up.c. Give the Service a named. Chose TCP or UDPe. Input the External (ex.: 10001)  and Internal (ex.: 22) portsf. Click OK  2. Point the Service port to the device. a. While in the Port Address Translations page, select the Service port in the "Services" drop down menu.b. Enter the IP address (ex.: 192.168.1.11) of the device.c. Put a check on the Enable box.d. Click on Save. 

Maybe you are looking for