Port Forwarding, ARRIS TG2472

ab4d

Honorable
Nov 18, 2013
3
0
10,510
Hi, I have been attempting to set up port forwarding for a digital radio node device (HRI-200) that requires 6 specific UDP ports, but I have unable to completely pass a successful port test, that shows all of the ports are open (the device's software has a port checking tool) and one of the port checking websites was tried but does not show any of the specified ports are open.

Under the ARRIS router's internal firewall tab, it has separate options to create virtual servers/port forwarding, and to set port triggers. So far, I've tried to set up the port forwarding by using a range setting of 46100 to 46200 and doing the same for the port triggers. When that did not work, I set up ports and triggers for each individual port. The end result was the same. I even tried just setting the triggers or just setting the ports, but no change. The Windows 10 computer that is connected to this device is dedicated to this application, and also has a static IP address.

I contacted my ISP to determine if they block ports, and was told no, but one of the techs placed that computer's IP in the DMZ, that did not change the outcome of the port test. I've double checked the computer's firewall and gave the application permission. I quired the ports the ports using the telnet command, but that failed. However, the resource monitor reflects the application is listening on the specified ports.

The device seems to work, but others that use the device, says it needs to pass a port test, or it can cause problems on the network and the server which is based in Japan. When the device is idle (disconnected state), the port test shows that two of the six ports pass the test. If I connect to another node, it shows that three of the ports pass, as if the ports are opening on demand. I have limited networking experience, so I am running out of ideas.

TIA for any new ideas.

Jim
 
It is surprising it does not work in dmz mode.

The best way to see if it is the router or the end device is to use wireshark on the PC. You leave wireshark run with as little traffic as possible running on the pc you have placed in the DMZ. You then go to one of the many port scanning sites and run a port scan. It will likely tell you all the ports are blocked. All that means is your pc did not respond. The key is to see if your pc got these message and which ports it got them on. Wireshark does a good job of decoding the packets so you should be able to tell.

If the pc gets data on those ports then it is a application problem. If it does not the is almost has to be a ISP restriction especially if you have it in DMZ mode.