bdimag
join:2002-12-30
Alexandria, VA
| [modem/router] Actiontec port forwarding
I am having trouble forwarding ports on my Actiontec GT704-GW wireless modem/router...
According to portforward.com:
i am using v1 of the software (althought it originally had v2 (apparantly)), and v3 cannot be found - only v1 on the actiontec website..
so, there is no actual port forwarding tab, only Application Level Gateway, which is where I am supposed to be setting it up.
I want to forward 22 (among others), so I setup a custom rule for TCP & UDP port 22 (which is how portforward shows it being done). That didnt work. So I tried port 2200 thinking maybe verizon has things blocked. that didnt work...
i've tried static routing off/v1/v2 and i think i read somewhere it should be off..
I know its not the destination computers fault cause i can connect to it with the 192.168 number...
I cant figure this out! help |
|
bdimag
join:2002-12-30
Alexandria, VA | ?  |
|
Jodokast96
R.I.P Bassman442
Premium
join:2005-11-23
Erial, NJ | Maybe try here? »Other Manufacturers Sorry, it's the best I can do for you. |
|
bdimag
join:2002-12-30
Alexandria, VA | I was just thinking (because I want to remember having some troubles like this with COX cable) -- could it be that verizon doesn't allow connections to yourself? same IP going to the same IP.. |
|
bdimag
join:2002-12-30
Alexandria, VA
| I like how instead of just helping their valued customers, they decide to throw port forwarding into a general support section; and if you want help in that area.... $29.99 flat fee..
they take out the normal port forwarding section, make their own, then when the people have problems - get em for 30 bucks...
somebody help me find v2 of the firmware!!! |
|
dslfan
join:2006-02-02
Brooklyn, NY
 ·Verizon Online DSL
4 edits | reply to bdimag
You can not port forward, I spoke to a supervisor. Feel free to find my post under this username, provides lots of details. The verizon branded actiontec gateways + {firewall} is built to VOL's their specifications.
Of course their is a chance actiontec BS me.
The settings to change the port forwarding do exist. But they do not function goes against what they supposed to do. Maybe as said before "a secret" on getting them to work exists.
Keeping Firewall off but Nat on exposes a potential bug / feature?  . Do not know the logic why they kept that hole open. While reporting to them the issue, the email received was "privileged communications" as always. So now that I told them can't say here. But can hint to it right? not to upset the big black suited individuals!(objection you honor)
It is easy to find, just turn firewall off and leave NAT on! volla. If someone going to pick on it not sure. They will need to penetrate the starting point. What this says to the web: "I am here try to find holes in me". Begged them for a firmware upgrade! The versalinks 327w do not expose that same bug / feature.
Nat + firewall off = exposes the hole / feature.
Nat + firewall low = exposes the hole /feature.
Nat + firewall medium = does not expose the bug / feature. But half of home desktops features will be disabled. As "port forwarding is broken".
Nat + High = same as above but even worse.
Firewall + no NAT = Just a game. |
|
bdimag
join:2002-12-30
Alexandria, VA
1 edit |
Application Layer Gateway is just for show? |
|
sekim
Premium,MVM
join:1999-08-17
Saint Petersburg, FL
·Verizon Online DSL
| I have several port forwards, or alg settings. They work fine. The router does not do loopback so you can't test it locally on your lan.
You can go to the 'Open Port Test Tool' »www.canyouseeme.org/ and verify you've configured the alg settings correctly and have opened each port. |
|
dslfan
join:2006-02-02
Brooklyn, NY
·Verizon Online DSL
1 edit | sekim 
I have several port forwards, or alg settings. They work fine. The router does not do loopback so you can't test it locally on your lan.
You can go to the 'Open Port Test Tool' »www.canyouseeme.org/ and verify you've configured the alg settings correctly and have opened each port.
[/user]
I am not going to dispute with you, because of limited knowledge in that area. However when you run grc shields up or Sygate full test after all stealth does the router pass ping echo 4 requests? (It probably would if your using Nat basic firewall + the 2nd firewall + port forwarding)
If you are able to use firewall + NAT for instance can you share? That is say one wants to open ports: 5222, 5050 , 5190 while using medium for firewall. Explain as you would be explaining to a 6 year old, The steps you would take on any of those ports. Based on that "the idea" rest would be clear. Thanks.
P.S: I tried telling it to:
----> Security ---> Applications
Protocol Port Start Port End Port Map Delete
TCP,UDP 5222 5222 5222
Protocol Port Start Port End Port Map Delete
TCP,UDP 5050 5050 5050
Protocol Port Start Port End Port Map Delete
TCP,UDP 5190 5190 5190
No dice either my error or something else.. What would you do again in this case? Say to pass the messenger protocols . Oh and are you using the verizons version of the gateway?
Verizon and actiontec said it can not be done. Likely no help faqs is the problem. The generic manual is bit dry here. |
|
sekim
Premium,MVM
join:1999-08-17
Saint Petersburg, FL
·Verizon Online DSL
| veriomik
Using the verizon special ActionTec here.
Included an example. Pretty self explanatory. Turn firewall off, SAVE/Reboot.
Select ALG, Select User, Select or add LAN Device, click new, make rule. Save/Reboot. Go back and do the firewall.
Curious - What are you attempting to do with those ports ?
My experience = 5190 icq, 5252 jabber, 5050 conference ctrl. Maybe all of em use the same ports now .. just curious, Why? |
|
dslfan
join:2006-02-02
Brooklyn, NY
·Verizon Online DSL
3 edits | > veriomik
> Using the verizon special ActionTec here.
I
> Included an example. Pretty self explanatory. Turn > firewall off, SAVE/Reboot.
> Select ALG, Select User, Select or add LAN Device, click > new, make rule. Save/Reboot. Go back and do the firewall.
II
> Curious - What are you attempting to do with those ports?
> My experience = 5190 icq, 5252 jabber, 5050 conference > ctrl. Maybe all of em use the same ports now .. just > curious, Why?
Sekim, Thanks for the reply and walk through again first of all.
I am trying to use icq / aim , jabber, yahoo without being restricted to port 80. That is while enabling the firewall medium. With intentions also so that the irc client can connect. On medium just using defaults http works. That is not much use when say one needs other services (ports). Perhaps pop / smtp will work without changes as well. But that is very limiting nevertheless. Carelessly opening the machine to the whole world. It does not make any sense (or safe) in any way one looks at it either. Hope that I am doing the right(sensible)(correct approach) (rational) thing by opening a limited range here.
The program that I use is gaim so it connects to all networks. It though listens on various ports to work as intended (all or most of the features of protocol (gaim still does not support every implementation yet)) it seems needs those ports.
 |
|
