D-Link Forums
The Graveyard - Products No Longer Supported => Routers / COVR => DGL-4500 => Topic started by: JunGLe on April 05, 2009, 12:26:28 PM
-
The Subject line says it all.
I'm on FW 1.15 (1.02 did the same), Vista UltimateX64,DHCP ISP, (Wireless off,SPI off,Games ports forwarded,Gamefuel rule for game hosting)
This router simply does NOTHING when settings are saved IF IT WILL LET ME SAVE THE AT ALL.
DMZ doesn't work
Virtual Server doesn't work
Application rules doesn't work
It contantly locks me out of saving settings.
Any chance this Vista router might be ready to do router things in time for Windows 7 ? ::) ???
-
There are many threads here with this problem, where if Wireless is disabled saving settings becomes impossible. I suggest you do what one user suggested where he put his wireless on a schedule where it just turns on for one minute every day or something like that. That way, you can save your settings.
-
Great ! Wireless is set to 1 minute on Sunday 12:00-12:01
settings save now...
AND do nothing.
No DMZ.
No Gaming Forwarding
No Virtual server
No Application Rules
When using the above rules, I use only one at a time to avoid rule conflicts.
http://www.yougetsignal.com/tools/open-ports/ (http://www.yougetsignal.com/tools/open-ports/) shows all ports requested to be opened as CLOSED under all the above scenarios. JUST LIKE THE DIR-655 I have here for decoration.
EDIT:
Remote Assistance attempt today confirmed that NO PORTS OPEN under the above rules.
-
You need to reset your router back to factory defaults first...
-
Did that the first time, did it again after reading your post.
No ports will open. Same as the DIR-655
Internet Sessions
192.168.0.100:6500 99.234.xxx.xxx:6500 67.171.134.24:3007 UDP - In 128 248
192.168.0.100:8767 99.234.xxx.xxx:8767 68.142.64.164:27017 UDP - Out 128 26
Status shows as "-" for port 6500 & 8767, ports 7777, 9989 and 13000 don't even show up in Internet Sessions.
-
Hold down the reset button in the back for 90 seconds. After the first 30, remove power from the back while still holding down the reset button. After another 30, plug it back in. At the end of 90 seconds total, release.
Log into the router, and reflash with firmware. Do NOT backup from ANY configuration file. Do everything over from scratch.
Set up Port Forwarding under "Gaming Rules" only.
Set Firewall restrictions to Endpoint Independent Only for both TCP and UDP.
-
After following your procedure I have zero function as usual.
All the game needs apparently is non randomized ports and Full Cone ( anyone can connect unsolicited )
http://www.yougetsignal.com/tools/open-ports/ (http://www.yougetsignal.com/tools/open-ports/) says the same while game is on or off.
-
Who is your ISP?
-
I use Rogers Cable.... High Speed, 10 down 1 up. DHCP
-
Do you keep turning off the wireless?
Also, that link you posted shows ALL of my ports as closed as well...
I'm still able to host stuff though. The tool is flawed...so, don't use that to test your ports.
-
Have you tried using the internet connection setup wizard? Do you still see those ports closed when you direct connect to the modem?
-
Yes...Ive tried the Connection Wizard, It just sets the same things as I do for the most part.
UT3 has no issues with direct connection to the Motorola Surfboard 5100 modem.
-
This is getting insane.
Over 50 calls logged to D-Link, AND NOT ONE AGENT knows what Full Cone is, nor One-To-One NAT !
Needless to say, they can't determine of this router allows TRUE One-to-One ( full cone ) if they don't know what it is.
Roughly equivalent to full cone isn't an answer as to what behaviour this NAT filter displays.
I need true One-To-One NAT that ALLOWS UNSOLICITED connections for many (up to 16) clients out in the wild that want to connect to my server on a specific port..WHENEVER they feel like it, without being contacted by the router first. The server also requires NON randomized internal ports...from what I can tell in Active Sessions log, its NOT randomizing internal ports at least.
Does D-Link employ ANYONE that actually is familiar with basic NAT networking terminology and possibly even this router?
50 calls over 20, hours of " can you give me an example of FullCone/One-to-One?"
Please help ....i'd like to use my server sometime this year.
-
This is getting insane.
Over 50 calls logged to D-Link, AND NOT ONE AGENT knows what Full Cone is, nor One-To-One NAT !
Needless to say, they can't determine of this router allows TRUE One-to-One ( full cone ) if they don't know what it is.
Roughly equivalent to full cone isn't an answer as to what behaviour this NAT filter displays.
I need true One-To-One NAT that ALLOWS UNSOLICITED connections for many (up to 16) clients out in the wild that want to connect to my server on a specific port..WHENEVER they feel like it, without being contacted by the router first. The server also requires NON randomized internal ports...from what I can tell in Active Sessions log, its NOT randomizing internal ports at least.
Does D-Link employ ANYONE that actually is familiar with basic NAT networking terminology and possibly even this router?
50 calls over 20, hours of " can you give me an example of FullCone/One-to-One?"
Please help ....i'd like to use my server sometime this year.
User error. I have no problems with hosting. Anyone CAN connect to me.
Are you able to host your stuff when you are directly connected to the modem?
What exactly are you trying to host?
And have you ever thought for one moment that it could be your ISP that isn't allowing people to connect to you? Or hosting for that matter?
-
The Cone of the NAT can be adjusted by changing the NAT Endpoint Filter. Have you tried changing these settings?
-
Still nobody will tell me what "Roughly equivalent " to Full Cone means. That implies that it may not actually allow SOME unsolicited connections.
The game Server is UT3, I adminned an oc48 fat pipe fed fibre optic server for years....doubt there are many ways to misconfigure clicking on "Endpoint independant"..either you hit the button or miss.
It may be game code error. This game was probably the most glitch riddled release in the last couple of years. UNTIL Patch 2.0 and the Expansion pack released a couple of months ago ( It's a smoooth running game now). But be prepared...75+% of all games released in the next couple of years from ALL developers will be using their engine. :P
So either the firmware is not delivering true One-to-One NAT, or the game netcode is weak. ( I use endpoint independent filtering with SPI off, port forwarding for the officiallly listed ports 6500,7777,13000 and I even added a couple in that always open when the game first starts for account login...8767 and 9989 ...just in case Epic once again forgot to inform the public about game server requirements.)
The game always warns me.... that either the router is remapping internal ports randomly or else it's blocking unsolicited packets to those ports forwarded.
At this point I JUST NEED CLARIFICATION on the exact behaviour of "Endpoint Independent" ..if it in fact allows ANY unsolicited packets to the server's forwarded ports in TRUE One-To-One NAT behaviour. It would greatly help me narrow down the cause of the error message from the server NAT test.
Some features of a server host don't seem to be allowed thru properly despite some people succeeding in connecting.
UT3 blames the router...but if this DGL-4500 DOES allow unsolicited connections from many external addresses, then it's the retail server code that is to blame. I will then have to go the route of using a collocated dedicated server hosting provider... and take it out on Epic.... :P
-
That sounds more like the NAT wants to allow UPnP based incoming connections, rather then the set ports you've listed.
How about a packet capture?
-
Heh...He didn't look up the correct ports.
Here's the list...
6500,7777,7778,7787,13000,27900
27900 IS what they use to connect.
-
You didnt look up the correct ports.
27900 is Gamespy's port on the Gamespy IP address....not the server's: 27900 DOES NOT open on game host ports.
Epic OFFICIALLY lists ONLY 6500,7777,13000 for proper server hosting. There is virtually Zero corrrect 3rd party port forwarding info on the net for UT3, as people were having issues with it's NAT test and tried OLD ports from previous UT's.
Open ports with router on, using spi off, forwarded ports 6500,7777,8767,9989,13000, Endpoint Independent NAT.
(http://img228.imageshack.us/img228/9652/ut3currportsg.jpg)
-
Take a screenshot of your Port Forward section...
Kinda need to make sure you are doing it right. And 27900 is NOT the GameSpy port. 6500 is.
And it would help if you pasted your command line (if you are running a dedicated server), compared to a listen server.
-
It's not just THOSE ports for proper server hosting.
If you can't have ALL of those ports open properly and in the right section, you will easily not have your server show up in the list, or ANYONE connecting to you.
TCP: 3783, 6667, 28900, 29900-29901
UDP: 6500, 6515, 7777, 13000, 13139, 27900
You obviously didn't have the correct ports opened. Open those, and then try. And make sure your command line is correct too..
-
I'm on the internal Epic mailing list....your list is thoroughly wrong.
6500,7777,13000...THAT's IT. as per Epic staff.
Frome the Server Admin Faq's page : http://utforums.epicgames.com/showthread.php?t=586810 (http://utforums.epicgames.com/showthread.php?t=586810)
I get an error message stating 'Your network configuration is not compatible with hosting matches. Please check your router's manual for instructions on setting up 'Port Forwarding' or a 'DMZ server'.' - What does that mean?
- UT3 runs some checks to determine if your network is setup to properly host a UT3 server. If your configuration fails the check then you will receive this error. There are multiple conditions that would cause this error:
1.) First, it checks to see if the outgoing port is randomized. The game communicates on 7777, but some routers may map that to a completely different port. This would need to be disabled in order to host a server.
2.) Second, it checks whether or not an unsolicited connection request from the Internet will be accepted by your router. Most routers will accept responses, but if the connection wasn't initiated from your LAN first, some servers will just reject the incoming request as a security measure. This is usually a setting in the firewall configuration inside your router. Again, this would need to be disabled in order to host a server.
What ports do I need to open on my firewall to allow incoming connections?
- UDP 6500 - Gamespy Query Port
- UDP 7777 - UT3 Game Port
- UDP 13000 - Stats Port
6500 is a query port for gamespy, but 27900 was an old gamespy server port (They opened it for servers like mine to contact them).
-
Lol...you are hopeless! If you are unwilling to DO what is required, then you won't be able to host a server. Go learn about how to host servers bud.
Open up those ports, and try. If not, not a big deal.
Another thing you may want to try is reserve your IP address as well...
Again, if you are unwilling to do what is required then you are on your own.
-
(http://img228.imageshack.us/img228/8783/portsforwarded.jpg)
Sorry..those ports were researched long before I came here, no offense intended. Even without a router ....most of those ports that you listed don't exist in UT3. I will DO what is required if it's relevant...one step at a time.
My 3 ports list comes from the top, the lead programmer confirmed it. ( Mark Rein ).
My screenie shows the ONLY ports that EVER open even with direct modem connection. AND YES...all features work correctly without a router.
IP address is reserved already, SPI is off, even tried disabling dns relay and qos as that supposedly helped UT2004 servers communicate better. The only port rule I use is port forwarding, with Endpoint Independent filtering enabled on both UDP and TCP.
I am currently only using Listen server. I have no commandline to offer you at the moment.
EDIT: I am able to have players connect in case that got lost in the convo. The NAT test warns me in any Port rule I use, even DMZ. SO at this point I'm trying to just ascertain that the DGL-4500 does true One-To-One NAT/Truly allows externally initiated connection requests. This MAY be a listen server limitation not fixed by Epic....and knowing 100% surely that the router does offer One-to-One, I can safely rule out the router altogether and just ignore the message while I use listen server.
-
If you are ONLY running a listen server, then you need to have the "listen" ports open...which is what I had offered you.
-
If those were listen ports for a listen server, then wouldn't those ports open up and show in a packet capture when my listen server has only a modem connected directly to the internet?
They don't show up at all. ever. MY ports opened are exactly the same when it's directly connected with no router. Just 6500,7777,8767,9989,13000, and random 45000-65000 ports that dont require forwarding.
Frankly..I tried those ports that you listed already many times...back when Epic hadn't yet posted a concise Port Forward list. There was just superstitious guessing going on at the time.
-
Common guys...quite throwing snipes at each other. You both seem extremly well versed in the issues, all that needs to happen is to identify the correct answer. A lot of us are interested in the result. All of your posts contain a wealth of information and are appreciated by the community. Thanks.
-
If it helps at all, the server NAT test is comprised of contacting a STUN server at either stunserver.org OR
stun.xten.com to determine NAT behaviour. Running a home stun server that uses the internal IP address and switchback address 192.168.0.199 & 127.0.0.1 disarms the NAT error warning. Using a home stun server was "necessary" only a couple of patches ago, back when UT3 would disable LAN hosting if the NAT test failed. It's only use now is to disable the warning popup.
P.S. I feel that I may have been a little mislead or confused when stating "won't open any ports" in my subject line as that proclamation was based on level 3 tech support at D-Link, who asked me to use http://www.yougetsignal.com/tools/open-ports/ (http://www.yougetsignal.com/tools/open-ports/) to see if the ports were getting opened. It always said the ports were closed even with players connected after that support call.
Obviously there is some connectivity though, and I will try to get some packet captures with a player or two connected.
-
Open Ports with unfirewalled modem:
(http://img258.imageshack.us/img258/4516/ut3currportsmodemonly.jpg)
-
Open Ports with modem only and 1 player connected.
(http://img258.imageshack.us/img258/4820/ut3currportsmodemwith1p.jpg)
-
So?
Any word from D-Link on what "roughly equivalent" to Full Cone allows?
I find it difficult to believe that this is such a hard answer to dig up. I have only been assured that it "should" allow "most" unsolicited connection requests, but nothing definitive. Perhaps someone can suggest one knowledgable D-Link Agent that could cut through the confusion at the Tech Support Offices.
I have found success in advertising the server on the Master Server Browser for all clients to see me,
AND am apparently getting solid connections from clients that join my server through Master Server Browser.
My main feedback tester had install issues on his PC that clouded the diagnostics, and after his reinstall his finding me/connecting was unhampered so far as we can tell.
The NAT test still pops up an error warning, under port forwarding, DMZ, Virtual Server, OR Triggered Ports mode. It is starting to look as though the test is flawed... and encouraging home servers to jump ship to paying for a server rental.
The only loose end still remains, to determine exactly what connections " Endpoint Independant" WON'T allow.
By the way...Reinvented,
Turns out I was right. Ports 6500,7777,and 13000 ONLY for hosting a server. ;) ;D
So it appears your source for UT3 ports needs a little reality check. They may want to contact Epic's official forums to make their data even remotely relevant. Server Setup--> http://utforums.epicgames.com/showthread.php?t=586810 (http://utforums.epicgames.com/showthread.php?t=586810)
-
Thought I should follow up with the conclusion to this issue that I presented, as I have had some new results with the DGL-4500 passing the UT3 NAT test.
I now pass the NAT test consistently
I kept port forwarding on ports 6500,7777,8767,9989 & 13000 (UDP & TCP).
Turned off SPI, and enabled Endpoint Independent Filtering on both UDP & TCP.
Just like every other time it used to warn me that my router wasn't configured properly,EXCEPT....
I have since only changed one thing relating to my server files that regulate the networking engine.
I simply added a redirect configuration section to enable compressed map redirection. Since then, my router's NAT is reported as moderate and passes the NAT test.
I'm still double checking the server configs to rule out any other unexpected server settings changes that may have caused this, but I have altered nothing else on the server OR router since I last posted.
Online for the first time without the NAT error message:
(http://img245.imageshack.us/img245/4599/serveradvertisedf.jpg)
-
Hey Jungle, 213 here. Any updates on this topic & UT3??