Bookmark and Share

Recent Posts

Pages: [1] 2 3 ... 10
1
Feedback / Re: waiting for router updates
« Last post by trpted on May 20, 2017, 12:27:13 PM »
I am not Shane

One more direction/question I thought of I have to say/ask.

#1 Go to http://ipv4.whatismyv6.com/

#2 On that web page is the non bogan IPv4 (Public) Address that users from Internet use to connect to you.

#3 In your router, somewhere in there you must have the same non bogan IP Address.

Example non bogan IP Address is 999.888.777.666, but in the router the WAN IP is 10.0.0.100 - this is not ok.

#4 Important note: This is not to say that the non bogan IP Address has to be Static.

Example yesterday's IP Address was 999.888.777.666 and today's IP Address is 999.888.777.555 - this is ok.

#5 If you do not see the non bogan IP Address anywhere in the your router it's screens, it first matters what the WAN IP Address in the router is:

a) From 100.64.0.0 - 100.127.255.255, then CGNAT/NAT444/LSN is present.

>>

Quote

If you want more details about CGNAT/NAT444/LSN, you can look at

http://en.wikipedia.org/wiki/Carrier-grade_NAT

The possible fixes to fix your issue if CGNAT/NAT444/LSN is present.

#1 Have them in their NAT router forward the ports to the WAN IP of your router..

#2 Upgrading the type of plan that you are on with your ISP so that you get a non bogan IP Address.

For example if you are a Residential Service Plan, consider going to a Business Service Plan.

#3 Consider switching to another ISP that can give you you a non bogan IP Address.

#4 For the long term future, get IPv6 working.


<<<

b) From 10.0.0.0 to 10.255.255.255, from 172.16.0.0 to 172.31.255.255 OR from 192.168.0.0 to 192.168.255.255 and if your NAT router is a RJ-45 WAN port router:

Step 1: Physically find your NAT Router

Step 2: Find the WAN port of it.

Step 3: Report back what the brand and model of the device that is connected at the other end of the wire that is connected to the WAN port of the NAT router.

c) From 10.0.0.0 to 10.255.255.255, from 172.16.0.0 to 172.31.255.255 OR from 192.168.0.0 to 192.168.255.255 and if your NAT router is NOT a RJ-45 WAN port router, then CGNAT/NAT444/LSN is present (See fix above if the case).

d) If from 10.0.0.0 to 10.255.255.255, from 172.16.0.0 to 172.31.255.255 OR from 192.168.0.0 to 192.168.255.255 and if your NAT router is a gateway NAT router, it matters how it is connected to the Internet (RJ-45 WAN port or acting a modem combo).

e) If from 10.0.0.0 to 10.255.255.255, from 172.16.0.0 to 172.31.255.255 OR from 192.168.0.0 to 192.168.255.255 and you do not know the type of NAT router yours is, it would help to know the brand and model it is - if you did not post already.

f) If the WAN IP was not any of those, it would be a good idea to check to see how the non bogan IP Address is not the same (and not NAT). If you need help finding why that is, you are to asking for help doing so.

-> Since you have posted what the brand and model of your router is/are:

Your  Arris NVG589 is a Gateway NAT NAT router and your Belkin N600DB is a RJ-45 WAN port router.
2
Feedback / Re: waiting for router updates
« Last post by twikker46 on May 19, 2017, 01:31:56 PM »
Hi Shane,

Actually it's not that complicated. These are two routers at two locations. One at home; one at my farm. I am trying to hook up cameras thru I-spy at both locations and need to get the ports forwarded correctly for I-spy to work remotely. It's beyond me.
3
Feedback / Re: waiting for router updates
« Last post by trpted on May 19, 2017, 12:59:05 PM »
While waiting for the updates some questions I want to ask.

#1 How are these two NAT routers connected to each other:

One of Belkin N600DB LAN ports to a LAN port on the Arris NVG589 OR the WAN/Internet/To Modem/To ONT - port of the Belkin N600DB to to a LAN port on the Arris NVG589?

#2 How is the Arris NVG589 connected to the Internet:

a) It's WAN/Internet/To Modem/To ONT - port?

b) OR its DSL port?

??

c) Note to better assist you, see the the user's guide / manual ( URL = https://community.arubanetworks.com/aruba/attachments/aruba/unified-wired-wireless-access/26009/1/Motorola%20NVG589%20VDSL2%20Gateway.pdf ) on page 13, 14 and 15 (does not matter if reading PDF file or printed out), check which of the two broadband lights is lit or the physical connection(s).
4
Feedback / waiting for router updates
« Last post by twikker46 on May 19, 2017, 09:15:01 AM »
Hi,

I am a paid user. I submitted information for two routers not on your list last week. How long will it take to get them on the list? I need to remotely connect with cameras at my farm. Routers are Belkin N600DB and Arris NVG589 (AT&T). Sent screenshots last Friday. Thanks
5
Port Forwarding / Re: DMZ not working on ASUS RT-68U Merlin
« Last post by trpted on May 14, 2017, 09:56:11 AM »
Let us do this step by step. Starting off with pre-checks.

* Pre-check item one  *

#1 Most ISP have a TOS ( Terms Of Service )

#2 You need to find that TOS for your ISP.

#3 If your ISP does not say anything that you can not to run any servers of any kind - green light.

#4 If your ISP does not allow you to run any servers of any kind - yellow light.

-> Be sure to know the risk of running any kind of server.

-> You have to decide is worth the risk or not, based upon...

a) ..how easy you can get another ISP to serve you - for example.

b) ..how much does it cost to upgrade the type of account that you have with your ISP. Example from regular consumer to gaming or business plan.

-> Since you did not post what ISP you use or what your public IP Address is This is something that you must find.

********************** Pre-check item two  **********************

#1 Go to http://ipv4.whatismyv6.com/

#2 On that web page is the non bogan IPv4 (Public) Address that users from Internet use to connect to you.

#3 In your router, somewhere in there you must have the same non bogan IP Address.

Example non bogan IP Address is 999.888.777.666, but in the router the WAN IP is 10.0.0.100 - this is not ok.

#4 Important note: This is not to say that the non bogan IP Address has to be Static.

Example yesterday's IP Address was 999.888.777.666 and today's IP Address is 999.888.777.555 - this is ok.

#5 If you do not see the non bogan IP Address anywhere in the your router it's screens, it first matters what the WAN IP Address in the router is:

a) From 100.64.0.0 - 100.127.255.255, then CGNAT/NAT444/LSN is present.

>>

Quote
If you want more details about CGNAT/NAT444/LSN, you can look at

http://en.wikipedia.org/wiki/Carrier-grade_NAT

The possible fixes to fix your issue if CGNAT/NAT444/LSN is present.

#1 Have them in their NAT router forward the ports to the IP of your router..

#2 Upgrading the type of plan that you are on with your ISP so that you get a non bogan IP Address.

For example if you are a Residential Service Plan, consider going to a Business Service Plan.

#3 Consider switching to another ISP that can give you you a non bogan IP Address.

#4 For the long term future, get IPv6 working.

<<<

b) From 10.0.0.0 to 10.255.255.255, from 172.16.0.0 to 172.31.255.255 OR from 192.168.0.0 to 192.168.255.255 and since NAT router is a RJ-45 WAN port router:

Step 1: Physically find your NAT Router

Step 2: Find the WAN port of it.

Info: WAN port could be called Internet or To Modem or To ONT port.

Step 3: Report back what the brand and model of the device that is connected at the other end of the wire that is connected to the WAN port of the NAT router.

c) If the WAN IP was not any of those, it would be a good idea to check to see how the non bogan IP Address is not the same (and not NAT). If you need help finding why that is, you are to asking for help doing so.


************* Pre-check item three  ***************

As how to check what the IP Address is/are, Subnet Mask is/are, Default Gateway is, MAC Address(es) is/are, DNS Server(s) are of your computer, it depends on the OS and Version.

Note: This example assumes that you are on Windows 2000, Windows XP, Windows Vista, Windows 7, Windows 8 or Windows 10

#1 Press the Windows Start key to open the Start screen.

#2 Type cmd and press Enter to launch the command prompt.

Note: You do not need to click on anything on the Start screen—typing will automatically initiate a program search.

#3 Type ipconfig /all at the command prompt to check the network card settings.

#4 If not on Windows 2000, Windows XP, Windows Vista, Windows 7, Windows 8 or Windows 10 and you do not know how to check that network info - then post what is your OS and Version is.

#5 You need to make sure that the Default Gateway on your computer is the same LAN IP as your NAT router.

*** Done with Pre-checks, doing to the next the step. ****

#1 Why are you using the DMZ for?

For example: Trying to host on a Game Console.

#2 When you forwarded you forwarded to the LAN IP of your computer?

For example assuming that the Default Gateway on your computer is the same as the NAT router's LAN IP Address and if you get this output

IP Address 192.168.1.10
Subnet Mask 255.255.255.0
Default Gateway 192.168.1.1
At least one DNS 192.168.1.1

-> you would forward to 192.168.1.10

#3 When you tested the port(s), how did you test them?

6
Port Forwarding / DMZ not working on ASUS RT-68U Merlin
« Last post by tylerthe41 on May 13, 2017, 04:21:21 PM »
Long time no see. I haven't posted here in years, but I've run into a problem with my router. Even when I have a static IP with DMZ enabled, my ports do not open. Any thoughts? I'm leaving to work to I'll respond when I get back around 8pm.

EDIT: Modem is Surfboard 6183 and I'm connected via ethernet to the router.
7
Port Forwarding / Re: Need help with: DMZ, Two Routers, Port Forwarding
« Last post by trpted on May 03, 2017, 01:04:28 PM »
#1 I know according to the specs for the C2100T to connect your computers not only does it offer wireless, it offers 4 LAN ports.

#2 Besides your own RJ-45 WAN port NAT router connected to the C2100T, what else is connected to the LAN ports?

#3 At http://internethelp.centurylink.com/internethelp/modem-c2100t.html -> Basic:

a) as you can see there are different options.

b) What kind of connection is the C2100T handling?

For example PPPoE

#4 What is your ZIP code?
8
Port Forwarding / Need help with: DMZ, Two Routers, Port Forwarding
« Last post by zosterops on May 02, 2017, 04:22:33 PM »
Hello! So, by using the handy guides here, I think I've got my settings close to being right but I need some help with port forwarding. Here's my setup:

C2100T modem/router. IP: 192.168.0.1, wireless disabled.
TPLINK AC1750 router. IP: 192.168.1.1.

I want to use the C2100T as my modem and the TPLINK as my wireless router.
I've got 192.168.1.1 listed in the DMZ of the C2100T.
I have an ethernet cable connected from the INTERNET port on the TPLINK to  ethernet port 1 on the C2100T.

I can connect wirelessly to the TPLINK and I have internet access.

Using ipconfig in Windows, I can see that my laptop's IP address is 192.168.1.105. In the TPLINK settings, I forwarded port 5777:
Service Port 5777 / Internal Port: 5777 / IP 192.168.1.105 / Protocol: ALL / Status: Enabled

When I test the port using Simple Port Tester, it fails. What have I done wrong?

Thanks for any help!

9
(Program) Simple Port Forwarding / Re: how to check port fowarding on another device
« Last post by trpted on April 30, 2017, 01:11:55 PM »
These options

** One **

To use an inbound client side port checker, you must forward the ports to a computer that has a  inbound client side port checker running on it.

As need be, change the forwarding rule to stop forwarding to the DVR and forward instead

** Option two **

#1 Temporary disable the forwarding rule in the NAT router.

#2 Use any web based checker to check the port status.

#3 If the port is Open, something is horribly wrong there.

a) UPnP in the NAT router enabled (automatic forwarding without the need to log-in to the NAT router)?

b) Remote Control of the NAT router enabled?

d) Back Door - a different kind of Remote Control of the NAT router enabled !! ?

e) Not your NAT router (example ISP's Central NAT router) ?

#4 If the port is not open as expected :) , re-enable the forwarding rule in the NAT router.

#5 With any web based checker to re-check the port status.

a) If open, great. I will tell you what it means if you can only connect using the local/LAN/Internal IP Address from behind this same NAT router.

b) If not open, something is blocking it.

** Option three **

#1 Quoting my self

Quote

#1 From DSLR (dslreports.com) -> Forums -> Broadband and Networking -> Networking -> How to know if ports are reaching my computer from outside the post by DSLR user mackey (user # 1479488) on 2015-Sep-24 at 8:05 pm - if you wanted to test port 5154, besides using an inbound client side port checker:

Quote
Run tcpdump (`tcpdump -p -n -i <interface> port 5154` would be a good command to start with). If you see incoming TCP SYN packets (not SYN/ACK), or incoming UDP packets from an IP which did not have an outgoing packet first, then the port is open.

#2 For tcpdump on Windows I found this info https://uwnthesis.wordpress.com/2014/05/26/windump-how-to-use-windump-tcpdump-on-windows-7-the-visual-guide/

#3 For a TCP and a UDP port checker you can use http://www.base64online.com/port-check.php

#4 Using a packet sniffer (like tcpdump = command line / like wireshark = GUI) you should see the traffic from an outside IP address reaching your computer, like I did (when you are forwarding the ports to your computer).

Code: [Select]
    user-name@pc-name:~$ tcpdump -p -n -i eth0 port 5154
    tcpdump: eth0: You don't have permission to capture on that device
    (socket: Operation not permitted)
    user-name@pc-name:~$ sudo tcpdump -p -n -i eth0 port 5154
    [sudo] password for user-name:
    tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
    listening on eth0, link-type EN10MB (Ethernet), capture size 65535 bytes
    08:40:24.169428 IP 192.168.2.138.50157 > 192.168.2.255.5154: UDP, length 6
    08:42:15.839461 IP 4.79.142.206.37174 > 192.168.2.138.5154: Flags [S], seq 1464127243, win 8192, options [mss 1460], length 0
    08:49:05.773987 IP 90.145.69.116.51145 > 192.168.2.138.5154: UDP, length 0
    08:49:06.938818 IP 90.145.69.116.36530 > 192.168.2.138.5154: UDP, length 0
    08:57:57.580814 IP 198.199.98.246.42092 > 192.168.2.138.5154: Flags [S], seq 3027635480, win 14600, options [mss 1460,sackOK,TS val 4240686068 ecr 0,nop,wscale 8], length 0
    08:57:57.712334 IP 198.199.98.246.42093 > 192.168.2.138.5154: Flags [S], seq 1267700791, win 14600, options [mss 1460,sackOK,TS val 4240686102 ecr 0,nop,wscale 8], length 0
    08:57:57.840328 IP 198.199.98.246.42095 > 192.168.2.138.5154: Flags [S], seq 1515263633, win 14600, options [mss 1460,sackOK,TS val 4240686134 ecr 0,nop,wscale 8], length 0
    ^C
    7 packets captured
    7 packets received by filter
    0 packets dropped by kernel
    user-name@pc-name:~$


#5 Some notes about my testing..

a) 192.168.2.138.50157 is from this same computer.

b) As noted at grc.com -> Services -> Shield's Up they own 4.79.142.192 -thru- 4.79.142.207.

c) I believe 198.199.98.246 is from http://www.yougetsignal.com/tools/open-ports/ as it only checks TCP ports.

d) As you can see, I checked port 5154.

#6 The only UDP ports that grc.com checks, that I know of, are:

a) DNS (53) grc.com -> Freeware -> Utilities -> DNS Benchmark -> DNS Spoofability Test Introduction (or grc.com -> Services -> DNS Spoofability Test)

b) Universal Plug n'Play (UPnP) = 1900

https://www.grc.com/port_5000.htm

From grc.com -> Services -> Shield's Up: Click on Proceed and then GRC's Instant UPnP Exposure Test.


#2 To see traffic with a packet sniffer from other computers, for example like so..

a) The computer that you want to watch with must be put into Promiscuous mode as noted at https://wiki.wireshark.org/CaptureSetup where it clearly says Capture traffic destined for machines other than your own

b) A networking hub is connected by wire to the NAT router.

c) The computer that you want to watch and the other computer that you want to watch with connected to the networking hub as noted at https://wiki.wireshark.org/CaptureSetup/Ethernet where it says Shared Ethernet. Note at that Wiki, it also talks about how to sniffer/watch on Switched Ethernet where it has for example Capture using a monitor mode of the switch

d) All of the other computers can be connected by wire or by wireless to the NAT router.
10
I have a arris  router that I have successfully port fwd to a camera that sits at IP 134 my PC is on 190  ( on my internal network)  my question is how can I use the program to check for open ports on other devices. Lets say I go to a customer who has a dvr and I get on his network and I want to see if ports are fwd to his dvr but I cannot enter the DVR address in the box that defaults to my pc address. If I run the port checker from 190 I get a message that says none of the ports are open however they are just pointing to the other address.  I must be missing something not the first time :thinking:
Pages: [1] 2 3 ... 10