Cisco Routers :: RV042 Port Forwarding Stops Working When Firewall Is Enabled
Jun 4, 2013
I have a RV042 router on a single WAN and an internal LAN. I have configured port forwarding as follows: HTTP[TCP/80~80]->10.0.0.6HTTPS[TCP/443~443]->10.0.0.6IMAP[TCP/143~143]->10.0.0.5IMAP SSL[TCP/993~993]->10.0.0.5SMTP SSL[TCP/587~587]->10.0.0.5
Everything works just fine when I have the firewall DISABLED. However, when I enable it the behaviour is erratic. 1 out of 10 attempts to connect to ANY port forwarded works. Almost all attempts time out. Notice that this happens even if using only the default firewall rules (which should be bypassed by the port forwarding as I read in other posts).
My second try was to create firewall rules manually, overriding the default ones. I tried adding rules from source WAN1 (where my connection is) to ANY and to SINGLE IP's on every port. Nothing seems to work.
I don't know what I'm doing wrong, this is really bugging me. I had to turn the firewall off so we can access our servers from outside the office. This shouldn't have to be done.
Just found out that my firewall is getting LOTS and LOTS of Blocked - SYN Flood entries. I think this is why we are having trouble with the firewall. Could this be the problem? I have no idea where all these SYN packets are coming from since they appear with spoofed IPs or come from different bots all over.
View 1 Replies
ADVERTISEMENT
Oct 25, 2011
I am using a RV110W with the latest firmware 1.0.1.6 I have some port forwarding configured, which normally work. But sometimes, all port forwarding stop working. Everything else continues working normally, just all port forwarding don't work any more. I tried disabling the port forwarding and enabling them again, this doesn't work. Also disabling the firewall completely does not work. You have to reboot the router, then everything works fine again. When I make a portscan from outside with a "fresh" started router, the forwarded ports are open. When the error occurs and I make a portscan from outside, all ports that should be open (and have been open before) are closed.
View 8 Replies
View Related
Oct 13, 2011
I have a new (about 4 months old) RV042 V3 4.0.0.07 firmware that I am trying to use in fail over mode. I have a SOHO and I normally use cable Internet connection. It is quite fast (15 megabit), but not super reliable. I have added DSL (3.3 megabit) which is five nines (supposedly) but not so quick.
I have a Westell 7500 wireless DSL modem located in the basement, where the telephone lines enter the building. This gives me a wireless link to the second floor server room through a wireless router that connects to WAN 2 of the RV042. The cable modem is in the server room and connects directly to the WAN 1 of the RV042. The cable works, but when it goes down, the DSL link comes up but does not allow Internet traffic. The RV042 is set up as a Bridge and I have set up port forwarding to get the cable to work and used similar firewall commands to route the traffic if the router switched over. I suspect that the problem is in the port forwarding (port 80) or the firewall rules(which are pretty simple) because everything looks like it switches over, but it just doesn't work on WAN2.
View 2 Replies
View Related
Aug 5, 2011
I am using an RV042 router/firewall -- firmware v1.3.13.02-tm -- connected to a cable modem.I have one public address (WAN1) assigned by my ISP's DHCP server.All my machines on the LAN have static IPs. (RV042 DHCP Server is disabled.)I have set up port (80) forwarding to 192.168.1.101 The HTTP port forwarding does work if an http client on the LAN sends a request to http://<public-ip>:80But I cannot get a response if I send a request to http://<public-ip>:80 from a machine on the WAN.
I did configure Access Rules to allow http traffic (and then tried to allow *all* traffic) between a single IP on the WAN and 192.168.1.101 The incoming log table shows a connection is made from the http client on the internet to the correct http server on the LAN, but there is no resonse from the LAN to the remote client.Is my configuration the problem, or is this feature not supported by the RV042 router? Could my cable modem be blocking outbound traffic?
View 1 Replies
View Related
Jan 16, 2010
Having a problem with port forwarding on their WRT400N? I'm forwarding one service (https) and this stops working if it's not accessed after a 10 days or so. The only way to get it to work again is to reboot the router. I’m running the “latest" firmware, which is an oxymoron considering it's been over 12 MONTHS since Linksys updated the code... Which is appalling considering this appears to be their flagship wireless N router.
View 5 Replies
View Related
Apr 1, 2012
When my RV042 is accessed for long transmissions (svn check out, usually after 20 minutes ) the client receives a message "Gateway not responding, do you want to wait".
When this happens I see the following in the RV042 system log (the first 3 lines of the log below are normal):
Apr 2 17:36:53 2012Connection AcceptedTCP 192.168.2.2:8888->192.168.1.5:50046 on ppp1Apr 2 17:36:54 2012Connection AcceptedTCP 192.168.2.2:8888->192.168.1.5:50046 on ppp1Apr 2 17:36:54 2012Connection
[Code]....
View 10 Replies
View Related
Aug 12, 2011
We bought an RV042 at the end of June. It is used as a gateway and VPN router. DHCP server is disabled and all IPs are configured manually.Every once in a while (Tuesday night, then Friday night - yesterday, it has hapened once or twice before that) the router appears to restart (see log below) then comes back up with system time of Jan 01 2010. At this point the router will no longer load its configuration page (https://10.29.238.197:16443/) and VPN connection to our customer in Africa drops. However, devices behind the router can be reached and can access the internet. The only way to fix this is to power cycle the router at which point everything starts working flawlessly again.The PID VID is RV042 V03 running firmware v4.0.3.03-tm (May 12 2011 21:27:37). Our RV042 is a newer one with Cisco SMB Router branding not the older Linksys branding.
From the log when the router reboots:
Aug 12 22:38:42 2011VPN Log(g2gips0) #141: retransmitting in response to duplicate packet; already STATE_QUICK_I2Jan 1 01:00:05 2010System Logheart : System is upJan 1 01:00:13 2010System LogWAN connection is up : 10.29.238.197/255.255.255.192 gw 10.29.238.225 on eth1Jan 1 01:00:15 2010VPN Log(g2gips0) #1: [Tunnel Negotiation Info] >>> Initiator Send Main Mode 1st packet
I looked at the log more and all the usual messages assosciated with VPN being established are there - the last thing in the log before the router coming back up again is:
Jan 1 01:03:49 2010VPN Log(g2gips0) #4: [Tunnel Negotiation Info] Quick Mode Phase 2 SA Established, IPSec Tunnel ConnectedJan 1 01:03:49 2010VPN Log(g2gips0) #4: [Tunnel Negotiation Info] Quick Mode Phase 2 SA Established, IPSec Tunnel ConnectedJan 1 01:03:49 2010VPN Log(g2gips0) #4: sent QI2, IPsec SA established {ESP=>0x575a01c0 <0x6534ae4e
So it even claims the tunnel should be up but I can never reach anything on the far side.
View 3 Replies
View Related
Jan 14, 2013
this is regarding my RV042. Its firmware version is v4.1.1.01-sp (Dec 6 2011 20:03:18), unchanged from how I received it. I purchased less than a month ago. I have a problem wherein the firewall behavior is not what I expect it to be, where I expect only allowed ports/services to be open to a given private IP from the outside but am finding that all are open to that private IP!
Let me describe the current configuration. I am going to blank out all digits of the public IP addresses when discussing them except for the final digits for security reasons.Router's WAN1 is set up as static, X.X.X.189. This is part of my public IP block. WAN2 is disabled. One-to-One NAT is enabled. Three instances of it are set up. One, for example is 192.0.2.89 (a private IP) mapped to X.X.X.180, a public IP, part of our public block. Forwarding is not enabled. There is no DMZ Host. That is set to 192.0.2.0. Firewall and SPI are Enabled. Access Rules for the firewall are set up in addition to the default rules which are present to Deny all traffic with WAN1 and WAN2 as the source from any source to any destination. This to me means that unless I set up Allow actions, there should be no access from the outside, WAN1. As an example of one of my Allow rules, I have this:
Action: Allow
Service: HTTP
Log: Not log
Source interface: WAN1
Source IP: ANY
Destination IP: Single, 192.0.2.89
Time: Always
My problem: My expectation is that based on the One-to-One NAT setting, the public IP X.X.X.180 is now associated with the private IP 192.0.2.89, but nothing from public to private is allowed unless allowed by the firewall, which is only set to allow HTTP / port 80 to 192.0.2.89. But the behavior is that 192.0.2.89 is, as presently configured, open to everything from the associated public IP, not just port 80, but all ports! It is as if my firewall rules have no impact whatsoever.
View 3 Replies
View Related
Aug 23, 2011
Using a Mac running Mac OS X 10.6.8 with VPN Tracker 6.3.0.Before switching to the WAG320N I had no issues with my IPSEC VPN client. After the switch it consistently fails in Phase 1 negotiation.In the log file of the gateway I only notice: Mon, 2011-08-22 07:47:31 - [Outgoing] UDP Packet - 192.168.1.100:500 --> IP.ADDRESS.VPN.GATEWAY:500.The software itself complains about timeouts while contacting the remote gateway.VPN pass through is enabled, no port forwarding is set up, firewall is disabled.
View 6 Replies
View Related
Apr 19, 2013
Currently I have the RV042 router working in a dual WAN set up, it is configured to accept connections on numbers of ports like 80,443, 25 and forward them to a local ip.
The problem is this only works with WAN1. Is it even possible to forward ports for connections coming in over WAN2?
View 5 Replies
View Related
Jan 24, 2013
I have RV042 and E4200 routers . I tried the manual UPnP port forwarding using Rv042 router and was succesful ( by typing 192.168.1.1 in the explorer and logged in using user name and password )
I am using a linux embedded system whose Internal IP ,Internal port are mapped .This system is connected to one of the LAN ports
I want to try auto UPnP port forwarding both for RV042 router and Linksys E4200 routers
After enabling the Upnp option only and logging out ,Can i add a port mapping entry in this router without logging in using a C++ program which runs on linux embedded system .
View 2 Replies
View Related
Nov 15, 2011
I recently installed an RV042 v1.1 vpn router (older hardware revision but using the latest available firmware 1.3.12.19-tm) and set up VPN access with the QuickVPN client. QuickVPN requires that the HTTPS setting be enabled under the Firewall options, so I did. I then scanned our static IP with grc.com's ShieldsUP! to check for open or non-stealthed ports and discovered that ports 80 and 443 show as wide open, while port 113 is closed but not stealthed. If I disable the HTTPS setting under Firewall, then ports 80 and 443 become stealthed. Is there any way to use QuickVPN and keep these ports stealthed?
View 1 Replies
View Related
Jan 2, 2013
I have a RV042 with Port Forwarding configured for RDP. This Port Forwarding Rule is being applied before my ACL - so subnets that are not authorized through are being allowed in. Firmware version 4.0.0.07.
View 2 Replies
View Related
Sep 14, 2011
I have tried replacing a loaner RV082 V2 with an RV042 V3 router with firmware 4.0.4.02. All worked well, including the site to site VPN. However, in spite of the fact that I have ports 443 and 4125 forwarded to the server (192.168.2.10), we are unable to connect via RWW. There is no such problem with the RV082. What is different with the way we configure these V3 routers for port forwarding?
View 2 Replies
View Related
Oct 26, 2011
I've configured my rounter but am having a firewall issue, I think.I'm trying to connect remotely to an IP Camera.I've set the port forwarding on my router for port 8081 to forward to the IP of my camera.I've set the firewall aswell to allow traffic from the WAN to the IP of my camera.
View 1 Replies
View Related
May 16, 2012
I'd like to setup a WCCP in those routers, but as I read, it's not possible.
Another way to circumvent this limitation is to foward a request to the router from the LAN port 80 to a LAN IP, something like:
LAN 1 192.168.1.100:80 -> router -> LAN 2 192.168.1.101:80
View 1 Replies
View Related
Aug 5, 2011
I am using an RV042 router/firewall -- firmware v1.3.13.02-tm -- connected to a cable modem.I have one public address (WAN1) assigned by my ISP's DHCP server.All my machines on the LAN have static IPs. (RV042 DHCP Server is disabled.)I have set up port (80) forwarding to 192.168.1.101. The HTTP port forwarding does work if an http client on the LAN sends a request to url...But I cannot get a response if I send a request to url... from a machine on the WAN.I did configure Access Rules to allow http traffic (and then tried to allow *all* traffic) between a single IP on the WAN and 192.168.1.101.
The incoming log table shows a connection is made from the http client on the WAN to the correct http server on the LAN, but there is no resonse from the LAN to the WAN.Is my configuration the problem, or is this feature not supported by the RV042 router?Could my cable modem be blocking outbound traffic?
View 1 Replies
View Related
Oct 31, 2011
I have a system with a RV042 managing the internet connection.Behind the RV042 I have an e-mail server and a development machine that I access through SSH.My problem is that if I forward port 25 to my internal e-mail server it bypasses the firewall rules.I have an external vires and spam scan host that is the only one I should accept incoming email from - but it seems that whenever you add a portforward then it bypasses the firewall rules.
View 1 Replies
View Related
Jun 9, 2012
I'm trying to set up a RV042 to do the following:
1) Block all WAN connections, except for:
2) Allow all port 80 connections, and forward to 10.4.20.60
3) Allow all port 443 connections, and forward to 10.4.20.60
4) Allow port 22 connections from specific IP addresses, and forward to 10.4.20.60
5) After a remote client has connected using Client to Gateway VPN, allow that remote client to access anything on the LAN
I'm able to do #1-4 above, but I can't get #5 to work. Or I can get #5 to work, but can't implement the restrictions I need in #1-4. Attached are some relevant screenshots. I think the problem is that I have Forwarding rules set up that require me to have a firewall rule to Deny All Traffic from WAN1 (unless I'm specifically allowing it). In the Access Rules screenshot, rule #6 is the problem. If I enable it (thereby denying all WAN1 traffic), then VPN clinents can't access anything on the LAN. However if disable this rule, VPN clinents can access anything on the LAN, but the firewall also opens up all outside connections to SSH, since that's set up in the Forwarding rules. I would have thought that once a remote client is connected using client to gateway VPN, then that client is considered to be on the LAN, as far as the firewall is concerned. Thus a firewall rule (like #6) that is specified for WAN1 shouldn't effect remote VPN clients.
View 1 Replies
View Related
Dec 18, 2012
I just installed an RV180 at home. I can not get port forwarding to work - after reading in several forums I realize that I need a firmware 1.0.2.2 that currently is in a beta stage.
View 7 Replies
View Related
Dec 1, 2012
This is the RVS 4000
Firmware version 1.3.3.5
STAR 9202 Chipset
64 MB DRAM
8MB Flash
DOS, Block WAN Rq, Remote mgmt all OFF
IPSec Tunnel none used
[code].....
Every day or so the Router becomes unresponsive to the HTTP mgmt interface, as well as it no longer offers DHCP services.then this happens the only remedy is to power reboot.
Everything comes back online just fine, however, the LOGS are initilaized so no data to figure out what`s going on.My next step is to setuo a syslog server and have the logs copied out.( No, I have no Torrents running at all, but I do have several devices like AppleTV, PS3s etc that run streaming Video plus I have the SPA3102 )
View 1 Replies
View Related
May 11, 2013
RV215W router port forwarding not working.Port forwarding works for a short period of time, then stops working. Reboot router, works again for short period of time, then stops again.
I have updated firmware to latest. I had seen other similar bugs posted for 220 and I think 180, not sure if this router has similar bugs and waiting for fix release to firmware.I had recently purchased two, one deployed, will hold off on other now because of issues, and may have to move to different unit if a resolution not found this week.
View 5 Replies
View Related
May 4, 2011
All I want to do is have VNC connect on port 5950. So I want to forward traffic coming in on the external ip address on port 5950 an internal ip address on port 5950. Here is my config:Building configuration...Current configuration.
View 17 Replies
View Related
Apr 6, 2012
I'm not able to access my Slingbox from the outside. I've set up port forwarding on port 5001 to allow outside connections in, but port forwarding isn't working. Am I missing something?
object network INSIDE-HOSTS
subnet 10.10.10.0 255.255.255.0
object network Slingbox
host 10.10.10.254
object-group protocol TCPUDP
[code].....
View 13 Replies
View Related
Feb 12, 2012
We have a managed service provider voip network that requires us to use our own router for the data network. We wanted to use the RV042 for it's easy vpn setup. After installing it worked great for about 10 min. then the WAN port stopped passing traffic. 3 min. later it started working again. We tested the RV042 on a different network and it works fine. We tested an older Pix on the managed network and that works fine. But the RV042 will not work on the managed service provider voip network. The service provider says that on their end it shows our WAN port going up and down.
View 1 Replies
View Related
Dec 20, 2011
I recently took over at a company as IT Manager. All through my career I have heard about the quality of Cisco equipment. Over the past few years I have used a few different Cisco products with good success. When I took over they were using an assortment of old D-link DI-604UP's & DI-804HV routers. The problem is that most of the DSL Internet connections now are faster than the 10 megs that these units WAN connections support. Since they were working fine other than that I felt that replacing them with the RV042 would be a good step. So far I have purchased 6 & implemented 5 of them. The sites vary in number of network devices from 10 to about 50.
The problem is that 4 of the 5 routers start to slow down & finally stop responding after a period of time. If I unplug them, count to 10 & plug them in again they work fine again for a period of time & then quit. The length of time varies between sites & even varies on the same unit. They may go for 2 days or 2 weeks. I never know what I'm going to get. When they go down I don't even have local access to them. It's like they overload & can't accept any more data. I can't tell you what version of firmware they originally had but I can tell you I had upgraded 3 of them to version 4.0.4.02 & then to version 4.1.0.02. I reset & manually re-entered all the settings after I did this.
I have read through the posts & have changed the MTU settings & tried disabling the SPI firewall setting to no avail. The D-link routers ran flawlessley until I replaced them & have done so since I put them back.
I now have over $1000.00 dollars worth of routers that I can't use. I have a boss that is on me because I talked him into spending the money when the $200.00 dollars worth of routers I replaced were working fine.
I have 10 locations to upgrade the total infrastructure in. Routers, switches, etc. If I don't get this resolved quick there is no way in the world I be buying any more Cisco equipment.
View 4 Replies
View Related
Aug 6, 2012
The Port 80 port fowarding stops functioning after a few hours and requires the router to be rebooted to start forwarding again. The firmeware is the latest 1.0.04 Build 7. I require it to operate reliably for many days without intervention. I assume that it is a port forwarding problem because I can access the IP on my network from within my network even when I can't access it from outside my network. I am using the correct IP addresses as it sometimes works OK. A characteristic is that when I can't access the page it loads as completely blank white with no error message.
View 2 Replies
View Related
Dec 5, 2012
Since the power failure two days ago, my -ASA stops forwarding traffic to internal servers, for no apparent reason. Packet trace shows all OK, packet capture buffer stays empty when I try to http into the mail server. The only way to get it working is to change the Outside Ip to the one used for mail, then to change it back. It will work OK for a few hours, then stop, with nothing obvious in the logs.
View 2 Replies
View Related
Jul 7, 2012
I am trying to make a server in the game Halo combat evolved for the PC, but i need to forward 3 ports, ports: 80, 2302, and 2303, i did them all, but it still says they are all still closed, when I scan them or they say, its times out.I have a D-Link router.
View 5 Replies
View Related
Apr 22, 2013
how to: port forwarding to 2 different destinations based on incoming WAN port
The default HTTP service works fine: TCP80/80-> 192.168.0.55
I have a couple of IP security camera's I'd like to be able to access remotely that also listen on port 80. I tried TCP & UDP 8009/8009-> 192.168.0.9 without any luck. Not sure how to handle the port redirects on the RV042G? Seems simple and was on the Symantec, could be user training :-)
I was able to do port redirect with the Symantec Firewall I'm replacing.
View 2 Replies
View Related
Oct 11, 2012
Is it possible to create a service which will forward public port 9010 to an internal IP address with port 23 ?
First of all, I do not like to open the public Telnet port to the inside so I would use another public port and second my ISP does not allow some public ports beneath port 80
View 2 Replies
View Related
Apr 13, 2013
I've set up port forwarding from an external port (9000) to an internal port (80) on our SRP541W, and for some reason, it's not working externally. If I access the public address from within the internal network, it works properly.
View 6 Replies
View Related
Feb 11, 2011
I setup port forwarding for many router before, but I couldn't get this one to work.I triple check all of my configuration, they all setup correctly. But the port/ports on the router is not open.
View 1 Replies
View Related
