Blocked Ports

karlsees · Jun 26, 2012, 09:57:47

Hi,

I have the FTTC product and I'm having problems opening ports. Its all part of my desperate attempts to get a Vodafone SureSignal box to work. I've tried websites such as www.grc.com to probe which ports are open and everything comes up in "stealth" mode.

As IDNet do not block any ports and I have configured my router correctly (see below), I suspect the BT supplied Huawei Echolife HG612 modem is the cause of the problem. I have tried powering down but no change, apart from a very brief period when a few ports came up as open (this added to my suspicion that the HG612 is the problem). As the HG612 is locked I can't access it to check the port forwarding settings. N.B. I have set up port forwarding on my router but read elsewhere that the 2-router configuration with FTTC requires setting up port forwarding on the HG612.

Basically, I suspect the HG612 is faulty and needs replacing. I've searched the forum and can't see any similar messages and I can't believe it would be this hard for domestic users to get port forwarding to work in the normal course of events. I've also read there have been issues with this product and replacements can be requested.

Help and advise please.....either to troubleshoot or whether (and how) to get the HG612 replaced.

N.B. My router that sits behind the HG612 is a Linksys WRT610N. I've disabled the firewall, set up port forwarding and added the SureSignal box to DMZ. Vodafone have run the config through some kind of simulator and confirmed its set up perfectly. I also swapped in an Apple Time Capsule, got it all hooked up via PPPoE, set up port forwarding, etc. but no change. Again, another indication that the HG612 is the problem.

Thanks

Simon · Jun 26, 2012, 11:00:13

Sorry, can't help with the technical issue, but

I'm sure someone more useful will be along soon, but just to double check, do you have a software firewall running at all?

Ray · Jun 26, 2012, 11:00:57

karlsees · Jun 26, 2012, 11:09:50

Good question. I tried with both software firewalls on and off. I did this on a Mac and a PC running Windows 7. No difference.

Simon · Jun 26, 2012, 11:17:33

I don't have any answers, only questions.

When you say you've tried with "both software firewalls on and off", do you mean you have two software firewalls running, or you've tried it both on and off. I don't think it's a good idea to have two running simultaneously.

I have experienced software firewalls that don't actually 'free' everything when switched off, as sometimes the 'rules' will remain active - unless you disable the firewall completely, followed by a reboot, so that it doesn't start up in the first place. This could be a red herring, though, so I'd advise that you hold on for someone more technically competent to come along.

Lance · Jun 26, 2012, 12:14:05

Although I expect the Vodafone box is connected directly to the router so a software firewall wouldn't come into it.

What happens if you open a non-related port and point it at a PC. Does that then show as open? I also wonder if being in the DMZ is the problem. Have you tried it with port forwarding on but not in the DMZ?

Can you ping the vodafone unit from a pc?

karlsees · Jun 26, 2012, 17:01:31

I agree with Lance, the SureSignal box is connected to the router so I didn't expect the PC or Mac software firewall to make a difference. BTW I only have one firewall per machine - I was referring to switching off the firewall first on a Mac and then on a PC.

I pinged the SureSignal box from my Mac and here are he results:

Ping has started...

PING 192.168.1.100 (192.168.1.100): 56 data bytes
64 bytes from 192.168.1.100: icmp_seq=0 ttl=64 time=0.688 ms
64 bytes from 192.168.1.100: icmp_seq=1 ttl=64 time=0.318 ms
64 bytes from 192.168.1.100: icmp_seq=2 ttl=64 time=0.380 ms
64 bytes from 192.168.1.100: icmp_seq=3 ttl=64 time=0.366 ms
64 bytes from 192.168.1.100: icmp_seq=4 ttl=64 time=0.355 ms
64 bytes from 192.168.1.100: icmp_seq=5 ttl=64 time=0.275 ms
64 bytes from 192.168.1.100: icmp_seq=6 ttl=64 time=0.307 ms
64 bytes from 192.168.1.100: icmp_seq=7 ttl=64 time=0.387 ms
64 bytes from 192.168.1.100: icmp_seq=8 ttl=64 time=0.314 ms
64 bytes from 192.168.1.100: icmp_seq=9 ttl=64 time=0.323 ms

--- 192.168.1.100 ping statistics ---
10 packets transmitted, 10 packets received, 0.0% packet loss
round-trip min/avg/max/stddev = 0.275/0.371/0.688/0.111 ms

100% success.

As a non-technie, I'm nor sure what you mean or what I need to do to open a non-related port and point it a PC. If you can explain I'll gladly attempt it.

Regarding the DMZ, I tried it first without and then put the SureSignal box in the DMZ with a static IP address of 192.168.1.100. This is the same IP address I have forwarded the relevant ports to.

FYI when I ping the IP address Vodafone gave me I get 100% packet loss:

Ping has started...

PING 212.183.133.181 (212.183.133.181): 56 data bytes
Request timeout for icmp_seq 0
Request timeout for icmp_seq 1
Request timeout for icmp_seq 2
Request timeout for icmp_seq 3
Request timeout for icmp_seq 4
Request timeout for icmp_seq 5
Request timeout for icmp_seq 6
Request timeout for icmp_seq 7
Request timeout for icmp_seq 8

--- 212.183.133.181 ping statistics ---
10 packets transmitted, 0 packets received, 100.0% packet loss

Same for a traceroute:

Traceroute has started...

traceroute to 212.183.133.177 (212.183.133.177), 64 hops max, 72 byte packets
1 192.168.1.1 (192.168.1.1) 12.819 ms 1.302 ms 1.611 ms
2 telehouse-gw2-lo1.idnet.net (212.69.63.51) 8.868 ms 7.108 ms 7.312 ms
3 telehouse-gw6-gi4-400.idnet.net (212.69.63.246) 9.746 ms 7.539 ms 7.166 ms
4 lndgw2.arcor-ip.net (195.66.224.124) 8.910 ms 8.696 ms 12.148 ms
5 85.205.116.10 (85.205.116.10) 8.961 ms 10.401 ms 8.667 ms
6 * * *
7 * * *
8 * * *
9 * * *
10 * * *
11 * * *
12 * * *
13 * * *
14 * * *
15 * * *
16 * * *
17 * * *
18 * * *
19 * * *
20 * * *
21 * * *
22 * * *
23 * * *
24 * * *
25 * * *
26 * * *
27 * * *
28 * * *
29 * * *
30 * * *
31 * * *
32 * * *
33 * * *
34 * * *
35 * * *
36 * * *
37 * * *
38 * * *
39 * * *
40 * * *
41 * * *
42 * * *
43 * * *
44 * * *
45 * * *
46 * * *
47 * * *
48 * * *
49 * * *
50 * * *
51 * * *
52 * * *
53 * * *
54 * * *
55 * * *
56 * * *
57 * * *
58 * * *
59 * * *
60 * * *
61 * * *
62 * * *
63 * * *
64 * * *

Glenn · Jun 26, 2012, 17:07:53

Is this what you have done? http://portforward.com/english/routers/port_forwarding/Linksys/WRT610N/Vodafone_Sure_Signal.htm

karlsees · Jun 26, 2012, 17:23:36

Yes, this was the website that Vodafone directed me to in the troubleshooting guide. I added 1 or 2 extra ports that Vodafone listed elsewhere their troubleshooting guide. As I mentioned above, Vodafone technical support have confirmed that my router seems to be set up correctly.

Glenn · Jun 26, 2012, 17:26:28

I suppose then the thing to do is to try to borrow a modem from a friend/neighbour, and see if that fixes the issue.

I doubt support would have a spare modem.

karlsees · Jun 26, 2012, 17:44:24

I presume you're referring to the HG612 supplied by BT. I've already configured an Apple Time Capsule (instead of the WRT610 router) and no joy with that. I'll see if I can find a neighbour with FTTC. In the meantime, I'd appreciate some feedback from the technical guys re any reason to suspect the HG612 is the problem and any history of other people have the same issues. Thanks

karlsees · Jun 26, 2012, 23:05:33

OK...I think I've isolated the problem to the WRT610N router.

I borrowed exactly the same BT supplied FTTC modem from a friend, plugged it in and no change.

Then I played around some more with the WRT610N settings (with the help of the same friend's son who's just done a computer science degree!!). We managed to open a port BUT ONLY if the remote management is enabled and the port (for remote management) is changed to one of the ones we're interested in. In fact, whatever port you specify will be wide open to the internet but absolutely no others. Obviously, this is no good because I need more than one port open and I can't leave the router exposed to all and sundry.

I've googled and can't find any helpful solutions out there. I'm going to post a message on the Linksys forums. In the meantime, I have two questions for all you helpful IDNetters and tech support people:

1) Any ideas how to configure the router to get round this issue or at least more things to try out?

2) Any recommendations for a good router that people have not had issues with port forwarding, uPnP and SureSignal and works well with IDNet? I suspect I'll end up shelling out for a new one just to save my sanity!!!

Thanks

karlsees · Jun 28, 2012, 22:53:45

Latest update: Billion 7800N works perfectly. No need for any special configuration so UPnP must be doing what it says on the tin. The moral of the story: the Linksys WRT610N is a piece of rubbish and anyone having similar port issues should just go and buy better router.

Lance · Jun 28, 2012, 23:10:40

Great! Thanks for letting us know.

Simon · Jun 28, 2012, 23:18:25