Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Ports only open when in DMZ
New Posts  All Forums:Forum Nav:

Ports only open when in DMZ

post #1 of 9
Thread Starter 
Hi guys,

Long story short, I am trying to get my Plex Media Server to have remote access. For this to work, I need to forward port 32400.
Everytime I attempt this in my router, the port is not open. I have created exceptions in my router's firewall with no avail.

The only way I can get port 32400 to show as open is putting the Plex Server in DMZ, which I obviously do not want to leave it in.

Any ideas as to what is causing the block? I've tried disabling my firewall too which has no effect.

The router in question is a ZYXEL VMG8924-B10A and the PMS is running on a Freenas Box.

Any help would be greatly appreciated, as I am tearing my hair out trying to figure this out.
post #2 of 9
You probably need to open the port in firewall and forward it to your media server's ip with Port forwarding options in your router.
Ol'Faithful
(11 items)
 
  
CPUMotherboardGraphicsRAM
Intel Xeon x5660 P6X58D-E XFX AMD Radeon R9 280X Corsair Vengeance 24 GB Triple Chanel 6x4GB 
Optical DriveCoolingOSMonitor
Lite-On DVD-RW Noctua DH-14 CPU Cooler Windows 7 Pro x64 Samsung 24" LED 1080p 5ms DVI (S23A300B) 
PowerMouseAudio
Thermaltake Toughpower 750W Gold Corsair M95 Onboard :S 
  hide details  
Reply
Ol'Faithful
(11 items)
 
  
CPUMotherboardGraphicsRAM
Intel Xeon x5660 P6X58D-E XFX AMD Radeon R9 280X Corsair Vengeance 24 GB Triple Chanel 6x4GB 
Optical DriveCoolingOSMonitor
Lite-On DVD-RW Noctua DH-14 CPU Cooler Windows 7 Pro x64 Samsung 24" LED 1080p 5ms DVI (S23A300B) 
PowerMouseAudio
Thermaltake Toughpower 750W Gold Corsair M95 Onboard :S 
  hide details  
Reply
post #3 of 9
Thread Starter 
Thanks for the reply - I think I've done that but still doesn't work. Do you know exactly what DMZ changes in terms of router configuration?
post #4 of 9
Post what router it is. Like mentioned you probably need to open it in the firewall and then set a port forwarding rule. I believe a DMZ generally just sends anything to it unless the main network says it needs it.
My System
(21 items)
 
Server/HTPC
(11 items)
 
 
CPUMotherboardGraphicsRAM
AMD 8320 Asus m5a99fx pro EVGA 660ti  Gskill 8GB F3-1600C9-8GXM x2 
RAMHard DriveHard DriveHard Drive
4GB x2 OCZ Agility 3 Sasmsung 840 EVO Western Digital Caviar Blue 
Hard DriveOptical DriveOptical DriveCooling
Seagate 500gb Asus DRW-24B1ST Asus BC-12B1ST cool master hyper 212 evo 
OSOSMonitorMonitor
Windows 10 Pro x64 Arch  Asus 23" VH238 Asus 23" VH238H 
PowerCase
Corsair CX600M Fractal Design Define R5  
CPUMotherboardRAMHard Drive
i3 6100 Asus Z170M-Plus something 16gb DDR4 Western Digital 500GB 
Hard DriveHard DriveHard DriveOS
Samsung 2TB Western Digital Red 3TB HGST Deskter 4TB Unraid 6.x 
OSPowerCase
Ubuntu Server - VM Corsair CX430  Cooler Master HAF 912 
  hide details  
Reply
My System
(21 items)
 
Server/HTPC
(11 items)
 
 
CPUMotherboardGraphicsRAM
AMD 8320 Asus m5a99fx pro EVGA 660ti  Gskill 8GB F3-1600C9-8GXM x2 
RAMHard DriveHard DriveHard Drive
4GB x2 OCZ Agility 3 Sasmsung 840 EVO Western Digital Caviar Blue 
Hard DriveOptical DriveOptical DriveCooling
Seagate 500gb Asus DRW-24B1ST Asus BC-12B1ST cool master hyper 212 evo 
OSOSMonitorMonitor
Windows 10 Pro x64 Arch  Asus 23" VH238 Asus 23" VH238H 
PowerCase
Corsair CX600M Fractal Design Define R5  
CPUMotherboardRAMHard Drive
i3 6100 Asus Z170M-Plus something 16gb DDR4 Western Digital 500GB 
Hard DriveHard DriveHard DriveOS
Samsung 2TB Western Digital Red 3TB HGST Deskter 4TB Unraid 6.x 
OSPowerCase
Ubuntu Server - VM Corsair CX430  Cooler Master HAF 912 
  hide details  
Reply
post #5 of 9
When you put the server in the DMZ, you are effectively removing the firewall, and sticking it live on the internet, that why it works. It's a firewall configuration issue. You probably need to give your server a static IP address, then open the port in your firewall in the router, pointing to the static IP of the server. Also, if your server has a firewall in it too, you also need to open the port in the servers firewall too.
post #6 of 9
Thread Starter 
Quote:
Originally Posted by cones View Post

Post what router it is. Like mentioned you probably need to open it in the firewall and then set a port forwarding rule. I believe a DMZ generally just sends anything to it unless the main network says it needs it.
Quote:
Originally Posted by latelesley View Post

When you put the server in the DMZ, you are effectively removing the firewall, and sticking it live on the internet, that why it works. It's a firewall configuration issue. You probably need to give your server a static IP address, then open the port in your firewall in the router, pointing to the static IP of the server. Also, if your server has a firewall in it too, you also need to open the port in the servers firewall too.

Thanks for the replies - you both seem to be saying the same thing; however, I have done this and it still doesn't seem to work at all.
Here are some screenshots (the router is a Zyxel VMG8924-B10A and my server has the static IP of 192.168.1.23:

Port Forward settings




Firewall Protocol



Firewall ACL rule

post #7 of 9
I think you don't need that ACL entry.
Its just a access rule and not for port forwarding needed.
Corsair Air 240
(16 items)
 
Oldie
(7 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i5-6600K 3,5 GHz (Skylake) Sockel 11... ASUS Maximus VIII GENE, Intel Z170 Mainboard - ... XFX Radeon RX 480 GTR Black Edition, 8192 MB G... Corsair Vengeance LED Series, red LED, DDR4-300... 
Hard DriveHard DriveHard DriveCooling
Samsung SM951-NVMe SSD, PCIe M.2 Typ 2280-D3-M ... Crucial MX200 2,5 Zoll SSD, SATA 6G - 500 GB Toshiba SATA 6G, DT01ACA300, 3,5 Zoll - 3 TB Corsair Cooling Hydro Series H100i V2 
CoolingPowerCaseOther
Corsair SP120 PWM Quiet Edition Twin Pack Corsair HX750i High Performance Corsair Carbide Air 240 Micro-ATX - white CableMod C-Series AXi, HXi, TX/CX/CS-M & RM Cab... 
CPUMotherboardGraphicsRAM
AMD Phenom II X4 955 SABERTOOTH 990FX ATI Radeon HD 5770 Corsair  
RAMRAMRAM
Corsair  Corsair  Corsair  
  hide details  
Reply
Corsair Air 240
(16 items)
 
Oldie
(7 items)
 
 
CPUMotherboardGraphicsRAM
Intel Core i5-6600K 3,5 GHz (Skylake) Sockel 11... ASUS Maximus VIII GENE, Intel Z170 Mainboard - ... XFX Radeon RX 480 GTR Black Edition, 8192 MB G... Corsair Vengeance LED Series, red LED, DDR4-300... 
Hard DriveHard DriveHard DriveCooling
Samsung SM951-NVMe SSD, PCIe M.2 Typ 2280-D3-M ... Crucial MX200 2,5 Zoll SSD, SATA 6G - 500 GB Toshiba SATA 6G, DT01ACA300, 3,5 Zoll - 3 TB Corsair Cooling Hydro Series H100i V2 
CoolingPowerCaseOther
Corsair SP120 PWM Quiet Edition Twin Pack Corsair HX750i High Performance Corsair Carbide Air 240 Micro-ATX - white CableMod C-Series AXi, HXi, TX/CX/CS-M & RM Cab... 
CPUMotherboardGraphicsRAM
AMD Phenom II X4 955 SABERTOOTH 990FX ATI Radeon HD 5770 Corsair  
RAMRAMRAM
Corsair  Corsair  Corsair  
  hide details  
Reply
post #8 of 9
your ACL rule is blocking it. You've set it to accept packets from 192.168.1.1 - the routers IP, so it'll only accept packets from the router, and ditch everything from the WAN - the place you want packets from! smile.gif does the ACL have an option for source IP of Any?

Also, I noticed you had an applications tab. Would it be easier to set it up in there? usually routers with app tabs let you configure a "service" (in this case Plex Media) with a port number, then you just set up the service on the IP you want, and the firmware does the heavy lifting of configuring the firewall. I may be mistaken as to what is under that tab though, every router is different. smile.gif
post #9 of 9
Thread Starter 
Thanks for the response guys - I've managed to get it working now. I think the problem was I had WAN interface as 'ADSL' when it was actually 'VDSL'. I've since changed that and it seems to be working fine.

Thanks for you help +rep to everyone.
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › Ports only open when in DMZ