[Firewall] TCP / UPD port forwarding to multiple xBox's behind the firewall

Lonnie Abelbeck lists at lonnie.abelbeck.com
Sun Jul 21 13:22:53 CEST 2013


Hi Chris,

The AIF firewall.conf file is parsed as a shell script, such that...
--
FOO="1"
FOO="2"
FOO="3"
--
results in FOO having a value of only "3", what you want to do is space separate the values...
--
FOO="1 2 3"
--

So, in your case:
--
NAT_FORWARD_TCP="53,80,2869,3074,5000>192.168.1.15 53,80,2869,3074,5000>192.168.1.85 53,80,2869,3074,5000>192.168.1.86"

NAT_FORWARD_UDP="53,88,1900,3074>192.168.1.15 53,88,1900,3074>192.168.1.85 53,88,1900,3074>192.168.1.86"
--
etc. (the only spaces are separating multiple values within double-quotes).

Lonnie



On Jul 21, 2013, at 2:00 AM, cmr at uniserve.com wrote:

> A couple of weeks back I asked about a nat issue and port forwarding to an xbox.
> 
> I found my answer in the firewall.conf file, something several of you pointed out. Other than the fact my ISP blocks inbound port 80, that solution worked flawlessly.
> 
> it was these to lines and the UPnP IGD plugin that solved my problem:
> NAT_FORWARD_TCP="53,80,2869,3074,5000>192.168.1.15"
> NAT_FORWARD_UDP="53,88,1900,3074>192.168.1.15"
> 
> ... now for today's problem ...
> 
> I'm fortunate enough to have a wired house with several large tv's located in several areas of the house. One of my kids wants to host an xbox live tourney on the lan. Specifically, his friends bring over their own equipment, my dhcp server assigns addresses as needed and nat needs to be open for each xbox.
> 
> The server will assign static dhcp addresses in the range of 192.168.1.85 to 192.168.1.95 based on each machines mac address.
> 
> would I use the NAT_STATIC_IP="" because if I use multiple lines similar to the following it does not work for any unit other than the first one.
> 
> NAT_FORWARD_TCP="53,80,2869,3074,5000>192.168.1.15"
> NAT_FORWARD_TCP="53,80,2869,3074,5000>192.168.1.85"
> NAT_FORWARD_TCP="53,80,2869,3074,5000>192.168.1.86"
> ...
> 
> NAT_FORWARD_UDP="53,88,1900,3074>192.168.1.15"
> NAT_FORWARD_UDP="53,88,1900,3074>192.168.1.85"
> NAT_FORWARD_UDP="53,88,1900,3074>192.168.1.86"
> ...
> 
> I currently use two plugins, the UPnP IGD and the mac address plugins.
> 
> Something tells me this has an easy solution, I'm just unsure of where to look or start looking!
> 
> Chris



More information about the Firewall mailing list