Setting up Port Range Forwarding for routers and gateways

Port Range Forwarding is done so that data for Internet applications can pass through the firewall of the router or gateway. An example of an application port is Port 25 which is assigned for Email or Simple Mail Transfer Protocol (SMTP).

IMPORTANT: Ensure that you have the port numbers for the Internet application you are forwarding ports for. This may be obtained from the Application’s documentation or their website.

To set up Port Range Forwarding for Linksys routers and gateways, follow these steps:

Step 1:
Access the gateway or router’s web-based setup page by opening a web browser such as Internet Explorer or Safari . On the Address bar, enter your router’s local IP address then press [Enter] . When the login prompt appears, enter your device’s user name and password .

NOTE: The default local IP address of Linksys routers is 192.168.1.1 . For detailed instructions on how to check the IP address of your router, click here .

QUICK TIP: If you have Cisco Connect installed on your computer, you may access the router’s web-based setup page by clicking Router Settings > Advanced Settings .

Step 2:
Click the Applications & Gaming tab then click on the Port Range Forwarding sub-tab.

Step 3:
Under the Application Name , type any name you want to represent the ports being forwarded. Enter the required ports to be forwarded under Start ~ End Port , then choose the appropriate Protocol and enter the IP address of your computer or gaming console under To IP address .

NOTE: In this example, we will use the required ports for Xbox Live ® (XBOX1) and ports for a computer application (COMP1):

XBOX1: Start ~ End Port: 80 to 88; Protocol: Both (TCP and UDP)
XBOX1: Start ~ End Port: 3074 to 3074; Protocol: Both (TCP and UDP)
COMP1: Start ~ End Port: 4267 to 4269; Protocol: Both (TCP and UDP)

NOTE: To add a second computer or several wireless devices for port forwarding, add an Application Name different to that assigned for the first device and use the assigned IP address of the wireless device you wish to add to the port forwarding list. If you are using an iPhone/iPod, connect first to the wireless network then determine the IP address that is assigned by the router to your device.

Step 4:
Check the Enabled box after the IP address value and click .

NOTE: After saving, you might want to check if the settings have been properly saved. To do this, click on the Port Range Forwarding sub-tab under Applications and Gaming . If the settings have not been saved, do a router firmware upgrade. This will fix issues and possible errors on the router. For instructions on how to upgrade your router’s firmware to the latest version, click here . After the upgrade, perform the port forwarding process again.

You should now have set up Port Range Forwarding on your router. In case you are still not able to do this successfully, you may connect your computer straight to the modem and check if you are able to use the Application properly.

Perbedaan antara Port Forwarding and Port Triggering

Port Forwarding menyiapkan pelayanan publik pada jaringan Anda seperti server web, server FTP, e-mail server, atau aplikasi Internet khusus. Ketika pengguna mengirimkan jenis permintaan ke jaringan Anda melalui Internet, router akan meneruskan permintaan ini ke komputer yang sesuai. Hal ini dikonfigurasi di router jika Anda menggunakan komputer server atau server permainan.

Ada dua jenis Port Forwarding:

1. Single Port Forwarding
Tipe ini memungkinkan Anda untuk mengatur pelayanan publik satu per satu pada jaringan anda seperti server web, server FTP, server email, atau lainnya aplikasi Internet khusus. Sebelum menggunakan forwarding, Anda harus memberikan alamat IP statis untuk komputer yang ditunjuk.

CATATAN: aplikasi Internet khusus adalah setiap aplikasi yang menggunakan akses internet untuk melakukan fungsi-fungsi seperti konferensi video atau game online. Beberapa aplikasi internet mungkin tidak memerlukan forwarding apapun.

2. Rentang Port Forwarding 
Tipe ini memungkinkan Anda untuk mengatur pelayanan publik dalam kelompok yang berarti berbagai port, misalnya dari 20 ~ 25. Aplikasi tertentu mungkin memerlukan pembukaan port tertentu dalam rangka untuk itu berfungsi dengan benar. Contoh aplikasi ini termasuk server dan game online tertentu. Ketika sebuah permintaan untuk port tertentu datang dari Internet, router akan rute data ke komputer Anda tentukan.

CATATAN: Karena masalah keamanan, Anda mungkin ingin membatasi port forwarding hanya orang-port yang Anda gunakan, dan hapus centang kotak centangAktifkan setelah Anda selesai.

Port Trigerring set up router sehingga komputer akan dapat mengakses layanan publik di luar jaringan atau di Internet, seperti server web, server FTP, server email, server game atau aplikasi internet lainnya.

Untuk memahami perbedaan antara dua, lihat diagram di bawah ini:

Berdasarkan diagram di atas, pemain game menggunakan Pelabuhan Memicu untuk mengirim permintaan untuk mengakses server permainan. Permintaan akan dikirim dari komputer ke router pertama dan kemudian diarahkan langsung ke Internet. Ketika ini terjadi, permintaan, yang sekarang ini datang dari Internet, akan diteruskan ke Game Server oleh router. Proses di mana permintaan ke server Game dikirim oleh router didefinisikan sebagai Port Forwarding.

Contoh lain kapan harus menggunakan Port Memicu adalah ketika Anda tidak dapat men-download file sementara terhubung ke router Linksys. Proses download file ini disebut permintaan FTP. Permintaan FTP menggunakan port 20 dan Port 21, yang secara default, yang ditutup pada router Linksys. Karena komputer terhubung ke router Linksys, kedua port 20 dan 21 harus ‘dipicu’ dengan mengaktifkan Pelabuhan Memicu.

Port Forwarding digunakan ketika mengatur server publik saat terhubung ke router Linksys seperti FTP Server. Bila klien tidak dapat mengakses FTP Server yang terhubung ke router Linksys, port untuk FTP harus ‘diteruskan’ ke server untuk permintaan untuk diakui. Prosedur pembukaan pelabuhan dan mengarahkan ke komputer yang terhubung ke router Linksys disebut Port Forwarding.

Displaying Software Version And More

The show version command provides a lot of information in addition to the version of software that is running on the router. The following information can be collected with the show version command:
Software Version – IOS software version (stored in flash)
Bootstrap Version – Bootstrap version (stored in Boot ROM)
System up-time – Time since last reboot
System restart info – Method of restart (e.g. power cycle, crash)
Software image name – IOS filename stored in flash
Router Type and Processor type – Model number and processor type
Memory type and allocation (Shared/Main) – Main Processor RAM
– Shared Packet I/O buffering
Software Features – Supported protocols / feature sets
Hardware Interfaces – Interfaces available on router
Configuration Register – Bootup specifications, console speed setting, etc.

The following is a sample output of a show version command.

Router# show version
Cisco Internetwork Operating System Software
IOS ™ 3600 Software (C3640-J-M), Version 11.2(6)P, SHARED PLATFORM,
RELEASE SOFTWARE (fc1)
Copyright (c) 1986-1997 by cisco Systems, Inc.
Compiled Mon 12-May-97 15:07 by tej
Image text-base: 0x600088A0, data-base: 0x6075C000

ROM: System Bootstrap, Version 11.1(7)AX [kuong (7)AX], EARLY DEPLOYMENT
RELEASE SOFTWARE (fc2)

Router uptime is 1 week, 1 day, 38 minutes
System restarted by power-on
System image file is “flash:c3640-j-mz_112-6_P.bin”, booted
via flash
Host configuration file is “3600_4-confg”, booted via tftp
from 171.69.83.194

cisco 3640 (R4700) processor (revision 0x00) with 107520K/23552K bytes
of memory.
Processor board ID 03084730
R4700 processor, Implementation 33, Revision 1.0
Bridging software.
SuperLAT software copyright 1990 by Meridian Technology Corp).
X.25 software, Version 2.0, NET2, BFE and GOSIP compliant.
TN3270 Emulation software.
Primary Rate ISDN software, Version 1.0.
2 Ethernet/IEEE 802.3 interface(s)
97 Serial network interface(s)
4 Channelized T1/PRI port(s)
DRAM configuration is 64 bits wide with parity disabled.
125K bytes of non-volatile configuration memory.
16384K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102

Displaying Interface States

To view information about a particular interface, use the show interface command. The show interface command provides the following list of important information:
Interface State (e.g. UP, DOWN, LOOPED)
Protocol addresses
Bandwidth
Reliability and Load
Encapsulation type
Packet Rates
Error Rates
Signaling Status (i.e. DCD,DSR,DTR,RTS,CTS)

The following is an example of a “show interface serial0” output:

Router#show interface serial 0
Serial0 is up, line protocol is down
Hardware is QUICC Serial
Internet address is 10.1.1.2/24
MTU 1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255
Encapsulation FRAME-RELAY, loopback not set, keepalive set (10 sec)
LMI enq sent 207603, LMI stat recvd 113715, LMI upd recvd 0, DTE LMI
down
LMI enq recvd 0, LMI stat sent 0, LMI upd sent 0
LMI DLCI 1023 LMI type is CISCO frame relay DTE
Broadcast queue 0/64, broadcasts sent/dropped 0/0, interface broadcasts
62856
Last input 1w, output 00:00:08, output hang never
Last clearing of “show interface” counters never
Input queue: 0/75/0 (size/max/drops); Total output drops: 0
Queueing strategy: weighted fair
Output queue: 0/64/0 (size/threshold/drops)
Conversations 0/1 (active/max active)
Reserved Conversations 0/0 (allocated/max allocated)
5 minute input rate 1000 bits/sec, 1 packets/sec
5 minute output rate 0 bits/sec, 0 packets/sec
1012272 packets input, 91255488 bytes, 0 no buffer
Received 916 broadcasts, 0 runts, 0 giants
18519 input errors, 0 CRC, 17796 frame, 0 overrun, 0 ignored, 723 abort
283132 packets output, 13712011 bytes, 0 underruns
0 output errors, 0 collisions, 31317 interface resets
0 output buffer failures, 0 output buffers swapped out
3 carrier transitions
DCD=up DSR=up DTR=up RTS=up CTS=up

Router Management

IOS supports many different types of show commands. This section covers a few of the common show commands used to both manage and troubleshoot a router. The scope of this document is not to instruct how to use these commands to troubleshoot a router, but to make the user aware that these management options exist. For specific information about troubleshooting a network using these commands, refer to the appropriate troubleshooting document.

Displaying Configurations

To display the running-configuration, type the following command in privileged EXEC mode:

Router#show running-config

To display the startup-configuration that is stored in NVRAM, type the following command in privileged EXEC mode:

Router#show startup-config

The following is the show running-config output from the example used in the Router Configuration section.

Current configuration:
!
version 11.2
!
hostname cisco
!
enable password cisco
!
interface Ethernet0
ip address 10.1.1.1 255.0.0.0
!
interface Serial0
ip address 20.2.2.2 255.0.0.0
!
router rip
network 10.0.0.0
network 20.0.0.0
!
ip route 0.0.0.0 0.0.0.0 20.2.2.3
!
line vty 0 4
password telnet
login
!
end

When displaying a configuration, the exclamation marks (!) function as line separators to make reading easier. Referring to the above example, notice how commands entered at the interface configuration level appear indented underneath the respective interface (e.g. interface Ethernet0). Likewise, commands entered underneath the routing engine configuration level appear indented underneath the routing engine (e.g. router rip). Global level commands are not indented. This type of display allows a user to easily identify which configuration parameters are set at the global configuration level and which are set at the various configuration sub-levels.

Note: If an interface was in a shutdown state, the word ‘shutdown’ would appear indented under the particular interface in shutdown state. Also, commands that are enabled by default are not displayed in the configuration listing.