Bell Canada → Port Forwarding with 5200.

I have a 5200 E242 from Bell Sympatico. That's their new model with a very limited web interface (3 entries only).

I have 1 PC and no separate router. I wanted to use that modem as a router instead of as a bridge and I wanted to host a FTP & Terminal Server on my home desktop. I've seen 2 or 3 thread asking how to do that without conclusive answer.

I know I could have XP do the PPP connection but I want to put a max on the modem. PPPOE, FIREWALL, Dynamic DNS update if possible. So I could have no internet configuration on my PC except the network card.

I worked out a trick I haven't seen published anywhere else to do Port Forwarding and use a Dynamic DNS service to FTP & Remote Desktop (terminal service) to my PC.

0- Use a static IP address. Configure the PC ethernet card with : IP 198.168.2.2, mask 255.255.255.0, gateway:192.168.2.1. Note that with "Obtain IP automatically from DHCP", I always get 192.168.2.10 on my 1 PC setup.

1- In a browser, type: »192.168.2.1/vcwizardj.cg ··· ode=HOME)
This brings the Virtual Interface configuration wizard.

2- Click [0/35] under VC. That is the 1st (#0) virtual connection.

3- Click [PPPOE 0/35].

4- Click Next a few times. Enter your ISP un/pw when requested.

5- Click Next until you get to PPP Options. Select AutoConnect on Disconnect. Better for a server.

6- 2 more clicks. Select NAT and Enter your IP address (192.168.2.2) as the NAT IP Address.

7- Click Next until Finish.

8- Configure the PPP

9- Click Reboot to reboot the modem.

10- After reboot, tell IE not to connect to the broadband connection. IE/Tools/Internet Options/Connections/Never Dial a connection.

Now the modem does connect to the ISP and all ports are forwarded to the PC. Witht a dynamic DNS updater working, it should update your DNS with the modem IP address. FTP, telnet or Remote Desktop are available from the LAN if no firewall block the ports. Remark that you can't test this from your PC since the modem does not allow loopback. Another PC on the Internet is required.

This is what I had to do with Bell Canada Sympatico Modem. Step 6 does the Port Forwarding. It may be simpler with other firmwares. The Wan configuration may be accessible from the Web interface.

That's what I have managed to do so far. Now I want to activate the Dynamic DNS update from the modem. I suppose it is part of the firmware as the config indicates:
xsh> cfg ddns
ddns
sn = ""
spo = 0
hn1 = ""
hn2 = ""
un = ""
pw = ""
en = n
(BTY you can reset the admin & telnet/ftp pwd with the following commands:
»192.168.2.1/pfwizardj.cg ··· retain=f
»192.168.2.1/pfwizardj.cg ··· retain=f
)

Does anyone have an idea on how to access the Dynamic DNS pages or CGI script command?

Does anyone have a hint on how to use the cfg commands to change parameters? Do any changes require a reboot before being effective?

I hope this will help some and that I will get help on how to complete my project.

I have an uncrippled the modem and set to what u said.
Then i try to access the server using the ip address 67.70.67.x thru a proxy server »www.guardster.com and still not getting thru. Dont know why.

thanks for the help anyways.
if u have anymore suggestion please post it.

Thanks

I can not use guardster, neither anonimizer.com... But it works. I use Remote Desktop & my home Web Server daily.

I haven't been able to prove port forwarding from within my 'LAN' but it definitely works from the Internet.

if you telnet and type cfg ipfw, you should get something similar.
xsh> cfg ipfw
ipfw
dip = 192.168.2.2
dmac = 00:00:00:00:00:00
den = y [y,n]
en = n [y,n]
lev = low [off,int1,int2,low,med,high,cust,icsa]
rule#[0..255]
rn = 21
lev = off [off,low,med,high,cust,icsa,all]
sif = "any"
dif = "any"
dir = out [in,out]
acc = per [per,deny]
prot = 256
sip = 0.0.0.0
smsk = 0.0.0.0
sop = none [none,lt,eq,gt,rng]
spo1 = 0
spo2 = 0
dip = 0.0.0.0
dmsk = 0.0.0.0
dop = none [none,lt,eq,gt,rng]
dpo1 = 0
dpo2 = 0
icmp = 0
dis = n
hid = n
ptct = y
log = n
sl = n
ts = n

If so, you should have Port Forwarding enabled to the PC you specified (192.168.2.2 in the previous case).

HTH.
Francois

Thank you very much for this great solution. I have tried everything else I could find to get my e-mule working on my Bell Sympatico connection. The new version of the SpeedStream 5200, which Bell delivered to me, was not compatible with any firmware updates available online, nor did any other strategies work to "unlock" the limited menu features available in Bell's ersion of the SpeedStream 5200's web interface.

Your solution, however, worked perfectly. My ports are successfully forwarded, and all is well. I really don't know much about these matters, but best of luck on your projects.

Thanks again,

Jon

Hello,

I'm running the same Modem here in Montreal, and am trying to be able to connect to my computer from work using VNC. I have tried to follow your solution, but I'm not sure about step 8 - configure PPP - sorry but I'm not very technically knowledgeable - could you explain that step in a little more detail - just wondering if you mean config PPP in the modem interface or in Windows.

Thank you,
plbodine

Hello francoisr,

Please ignore my previous message - decided to just go for it - and it's working.

Merci Beaucoup!

plbodine

Hello,
I've tried this solution step by step but can't get this to work...
When i click on [PPPOE 0/35], i have only 1 'next' button to click... (the next screen shows 1 'finish' button instead).
What can i do please ?
Anyone got the same problem ?

Hi Onigirl,

Actually, you should click on the PPPoE to the left of PPPoE 0/35 - that will get you where you need to go.

I hope that works for you.

plbodine

Hello, If you change the admin and mfadmin passwords and choose "Do not require admin login" you'll get far more options, and the screen looks different. I included an attachment of these options. Any idea what the path for port forwarding would be? Perhaps the path that the E240 version had? Can't seem to get more options enabled. :\

Let me try attaching again *shrug* not seeing the attachment :\

BTW, you'll also have to choose "All Items" from the Profile Configuration Access section of Profile Wizard, after setting up the l/p. Too bad all options don't want to show. Sorry for so many posts. Can't seem to edit, and too lazy to register atm ;p

haha blur out your mac addy but not your IP? i hope you reconnected soon after.

Bleh, couldnt care less about my IP

Well, I've managed to actually get Port Forwarding working. After you do what I've said above, and I had to do these steps numerous times

Here they are again:

Step 1: you have to make sure your IP is set to 192.168.2.2
Step 2: Go to »192.168.2.1/pfwizardj.cg ··· retain=f and set "All Items" under "Profile Configuration Access" click next and choose "Do not require admin login"
Step2: Go to »192.168.2.1/pfwizardj.cg ··· retain=f and do the same thing, except type 192.168.2.2 as your "Constant Profile IP Address".

(you should now see the new configuration page that i've included in a post above)

From here, you have to access every configuration page manually. I've managed to figure out what some of them are, plus the ones francoisr mentioned.

Here they are:

»192.168.2.2/dhcpcfg.htm - DHCP
»192.168.2.2/ddnscfg.htm - Dynamic DNS (what francoisr wanted)
»192.168.2.2/ipp_config.htm - IP Passthru
»192.168.2.2/updatelocal.htm - Update firmware
»192.168.2.2/ras_config.htm - RAS config
»192.168.2.2/naptcfg.htm - Port forwarding
»192.168.2.2/dmzcfg.htm - DMZ Config

I really hope these steps work for you guys, they surely worked for me. Please reply if they did or not.

Woops, replace the »192.168.2.2's with »192.168.2.1 of course

I forwarded the ports to 192.168.2.3, and use that at my main computer. I just use 192.168.2.2 to forward more ports when i need them.

Hi all,

I just wanted to say a big thank you to francoisr and cotam for having explained.

Along with the crippled Bell firmware, I can now tweak my connection to forward my BitTorrent port.

Hey Cotam,

I did what you said and I managed to unlock the modem, and get the extended menu.
I tried running edonkey and I found out that it works now, but I was expecting that I had to forward the ports that edonkey uses first.
In other words...by unlocking the menus I found that all the ports are automatically forwarded to my IP address. I feel that this is not a safe thing to do because I'm vulnerable from the internet (infact I'm getting all sorts of messages from the internet using the Messenger Service).

My question is: Is it possible to unlock the modem but NOT have all the ports automatically forwarded to my IP. I would like to manually forward ONLY the ports I need through the Port Forwarding menu, so that all the unused ones remain blocked.
Can anyone help me?

Ciao.

You basically unlocked the ports for 192.168.2.2 by doing what I said. That's why I also mentioned I use 192.168.2.2 just for forwarding the ports to 192.168.2.3, or whatever other computer's I have in my house. Either do that, or take out 192.168.2.2 that you entered in the following wizard: »192.168.2.1/pfwizardj.cg ··· retain=f

I kind of find it easier just to switch to 192.168.2.2 to forward ports. I actually have two nic's in my main computer, and just enable the other one (which is 192.168.2.2) whenever I need to do anything, then disable when I'm done. That way you don't have to disrupt your downloads.

Hello,

Be aware of one thing, this "port forwarding" is more of a DMZ thing (i.e. expose this IP address to the global internet). What that really means, is that it is equivalent to having your PC directly connected to Sympatico without any sort of firewall/gateway between your the the world.

Make sure you have something like Zonealarm running before you try this.

Cheers,
AC

I have tried this twice, not sure what to do for step #8. When I am finished a reboot the modem I cannot connect. I have to log back into modem and put to factory reset to get back online. Any suggestions as to what I am doing wrong?

It's ok I missed the #0 step, still not sure how this will help me connect to realVNC?