R7000 Portforward problem

Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware
Author Message
chuyeu123
DD-WRT Novice


Joined: 02 Aug 2014
Posts: 3

PostPosted: Sat Aug 02, 2014 15:44    Post subject: R7000 Portforward problem Reply with quote
Hi everyone,

It is my very first post so please bare with me if i make any mistakes or ask some none "pro" question but i really couldn't figure this out. I've been looking all over the internet for the R7000 portforward however my ports are always close. I first use the newest stock firmware but no luck so i installed Kong mod dd-wrt build 24200 for the R7000.

What I've been tried to do is to get my VNC server port open which default are (5900,5800 and 5500) However no matter how much i tried

Turned off the Firewall
used the firewall script "insmod ipt_mark
insmod xt_mark
iptables -t mangle -A PREROUTING -i ! `get_wanface` -d `nvram get wan_ipaddr` -j MARK --set-mark 0xd001
iptables -t nat -A POSTROUTING -m mark --mark 0xd001 -j MASQUERADE"
Turned on UnPn,
Tried the DMZ (IP address of the VNC (my computer)

I have included screenshot of my port forward setting.

I hope to get help from everyone.

Thanks in advance


Last edited by chuyeu123 on Sat Aug 02, 2014 19:01; edited 2 times in total
Sponsor
HalfBit
DD-WRT Guru


Joined: 04 Sep 2009
Posts: 776
Location: AR, USA

PostPosted: Sat Aug 02, 2014 16:53    Post subject: Reply with quote
First, please post a smaller screenshot or link to a bigger screenshot. **Edit - Thank you for making it smaller**

Second, in my experience with my R7000, forwarded ports without a source net have not worked, so I'm pretty sure that is your problem. Put 0.0.0.0/0 for the source net if you want to open that port to anyone on the internet.

Although, now that I look at your screenshot a little more carefully, it looks like you are behind another router/firewall. Have the ports been opened on that router as well?

_________________
R7000 Nighthawk - DD-WRT v3.0-r50308
R7000 Nighthawk - DD-WRT v3.0-r50308
~~~~~~~~~~Dismantled for learning opportunities~~~~~~~~~~
WRT54Gv2
WRT54Gv8.2
~~~~~~~~~~Other Settings~~~~~~~~~
https://nextdns.io/?from=2d3sq39x
https://pi-hole.net/
https://github.com/DNSCrypt/dnscrypt-proxy


Last edited by HalfBit on Sun Aug 03, 2014 0:15; edited 1 time in total
chuyeu123
DD-WRT Novice


Joined: 02 Aug 2014
Posts: 3

PostPosted: Sat Aug 02, 2014 18:53    Post subject: R7000 Portforward problem Reply with quote
Hi,

Thank you so much for your help

First i want to appologize for the screenshot, i really didn't know how to scale it down, but i'll look into it the next time I'm posting it.

Secondly, when i tried to put in " 0.0.0.0/0" for the srouce code, It keep coming blank field and delete my port 5900 everytime i hit the apply button.

Thirdly, i really do not know if i have any firewall or other router. I don't think i quite understand what you were referring to. I am currenty running win8 and do not have any other antivurs except for the firewall of the windows. I tried to disable it to open the port however it still didn't work.

THank you so much for your help Smile i hope to hear from you soon
<Kong>
DD-WRT Guru


Joined: 15 Dec 2010
Posts: 4339
Location: Germany

PostPosted: Sat Aug 02, 2014 23:21    Post subject: Reply with quote
chuyeu123 wrote:


Thirdly, i really do not know if i have any firewall or other router. I don't think i quite understand what you were referring to.


Your WAN IP is a private lan ip, thus there must be a router in front of you and if that one doesn't forward then this won't work.

_________________
KONG PB's: http://www.desipro.de/ddwrt/
KONG Info: http://tips.desipro.de/
HalfBit
DD-WRT Guru


Joined: 04 Sep 2009
Posts: 776
Location: AR, USA

PostPosted: Sat Aug 02, 2014 23:40    Post subject: Reply with quote
<Kong> wrote:
chuyeu123 wrote:

Thirdly, i really do not know if i have any firewall or other router. I don't think i quite understand what you were referring to.

Your WAN IP is a private lan ip, thus there must be a router in front of you and if that one doesn't forward then this won't work.

10.x.x.x, 172.16-31.x.x, and 192.168.x.x are private IP (LAN) ranges. Private IPs = LAN IP--not allowed on the internet.

According to your screenshot in the upper righthand corner as <Kong> stated your WAN IP is a private IP address (192.168.0.2). Does that make sense?

Thanks for posting a smaller screenshot!!

_________________
R7000 Nighthawk - DD-WRT v3.0-r50308
R7000 Nighthawk - DD-WRT v3.0-r50308
~~~~~~~~~~Dismantled for learning opportunities~~~~~~~~~~
WRT54Gv2
WRT54Gv8.2
~~~~~~~~~~Other Settings~~~~~~~~~
https://nextdns.io/?from=2d3sq39x
https://pi-hole.net/
https://github.com/DNSCrypt/dnscrypt-proxy
chuyeu123
DD-WRT Novice


Joined: 02 Aug 2014
Posts: 3

PostPosted: Sun Aug 03, 2014 16:20    Post subject: Private IP Reply with quote
Hi,

Thank you for your guys's help. So i looked it up between a private and "public" IP but i couldn't figure out how to change mine to a "public" one so that i can forward my IP?

Can you please kind enough to point me to the right direction? Or maybe help me what is the right key words for me to google it?

And as at of another router in front of me problem. So to fix it is similar to what i have to do right? just change my private IP to a non-private IP?

Sorry if my question doesn't make sense but please let me know which part is hard to understand, i'll try to write i better next time.

And yes i changed the screenshot Very Happy

Thanks for the help!
jsmiddleton4
DD-WRT User


Joined: 18 Mar 2007
Posts: 444

PostPosted: Sun Aug 03, 2014 17:47    Post subject: Reply with quote
Your router is the second router in a chain of routers. You can change your router all day and not have a positive outcome because it is the first router in the chain that is controlling your options.

Where is the first router? Whose is it?

Your router is connected to another router some how.

You have to:

A. get your router be the first router in your connection to the internet. THEN you can change settings so as to reach your goal.

B. If you can't change the way the routers are connected the first router needs to open its ports.

_________________
Jim
Netgear R7000
Kong's 24800M OC to 1200,800
Previously:
Asus RT-N66U
Linksys E3000
Linksys WRT54GS Version 2.1
Buffalo WHR-HP-G54
Linksys WRT54G Version 1.1
slidermike
DD-WRT Guru


Joined: 11 Nov 2013
Posts: 1487
Location: USA

PostPosted: Sun Aug 03, 2014 17:53    Post subject: Reply with quote
A couple of things. Hopefully you will understand.

#1 you cant manually change your R7000 wan (Internet) interface ip address from a private to a public & expect it to work.

#2 What device does your R7000 WAN (Internet) interface plug into with the network cable?
(#2 is a key question)

#3 if you follow the cable & it plugs into a another router or modem/router combo then you have to make a choice on what to do next.

Choice #1 log into this other router or modem/router & configure port forwarding to your R7000 routers WAN (Internet) ip address.
#2 Remove the other router so that the R7000 is plugged directly into your internet modem & then reboot both.

Unless you were specifically told you have a static IP address for your internet then do NOT manually change the R7000 WAN interface ip address.
75% of the time using dhcp is the correct (only) choice you get from your internet service provider.

Basically your R7000 is not your internet router.
There is another router sitting between your r7000 & the internet.
This "other" router is giving your R7000 a private ip address.

_________________
Router currently owned:
Netgear R7800 - Router
Netgear R7000 - AP mode

R7000 specific Tips/Tricks.
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=264152
wabe
DD-WRT Guru


Joined: 17 Jun 2006
Posts: 889

PostPosted: Mon Aug 04, 2014 15:32    Post subject: Reply with quote
You most likely received a modem/ router box from your ISP. The thing to do is contact them and ask them to "bridge" the router you received. Call tech support. When the external router is bridged you will receive a public internet address. There is nothing else to do on your end
_________________
Netgear R7000 on Build 55109
Asus AC-AC68U rev. C1 (AP) on Build 55109
Asus AC-68U rev. A1 on Build 54604
Asus AC-68U rev. A1 on Build 53339
slidermike
DD-WRT Guru


Joined: 11 Nov 2013
Posts: 1487
Location: USA

PostPosted: Sun Mar 01, 2015 17:22    Post subject: Reply with quote
Jones, I can confirm that port range forwarding works so if you
Must have forwarding working on beta software then use range forwarding.

_________________
Router currently owned:
Netgear R7800 - Router
Netgear R7000 - AP mode

R7000 specific Tips/Tricks.
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=264152
slidermike
DD-WRT Guru


Joined: 11 Nov 2013
Posts: 1487
Location: USA

PostPosted: Sun Mar 01, 2015 18:32    Post subject: Reply with quote
jones,
do you have any other services/features like privoxy running?
If so, disable it & try your forwarding again.

I have an R7000 and I am telling you that port range forwarding works as it is supposed to.
No privoxy or other type of packet intercept except NAT on my router.

_________________
Router currently owned:
Netgear R7800 - Router
Netgear R7000 - AP mode

R7000 specific Tips/Tricks.
http://www.dd-wrt.com/phpBB2/viewtopic.php?t=264152
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Broadcom SoC based Hardware All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum