Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

BT Hub 3 and DMZ for Public IP ranges

Rog
Member

on ‎25-06-2012 09:24 PM

Hi

we transferred from ADSL to FTTC last week and have successfully set up our public IP ranges on our interoffice vpn router. While the ipsec interoffice vpn seems to work fine with the BT firewall on its default setting, we cant vpn from clients into the office unless we disable the BT firewall completely. This isnt a problem for our office network as we have a complete firewall on our network router sat behind the BT router but we also want to use the wireless on the BT hub for guest internet access so would prefer to leave the firewall active.

 

I've tried the DMZ option but it seems you can only set internal IP address machines in the DMZ not those with publicly assigned ip addresses (this makes sense as they should be completely open anyway). I've also tried setting up a new applicatoin called "All" that forwards all ports to our network router behind the BT hub and set the firewall option to customised but this doesnt work.

 

Does anyone have any ideas why all ports arent opened by default when a public ip address is configured or why I cant forward all ports to a pubic ip address without disbaling the firewall completely?

 

0 Kudos
6 REPLIES 6

celavey
Power User

on ‎26-06-2012 03:23 AM

A friend suggested for me to transfer from ADSL to FTTC. May I ask where can I get more information about these 2 options?

0 Kudos

Rog
Member

‎26-06-2012 08:26 PM - edited ‎26-06-2012 08:44 PM

I've traced the problem to the IP address lease of our router expiring on the homehub so it thinks the equipment is disconnected and then stops forwarding traffic (unless the firewall is off completey). I'll try and find the optoin to force a lease expire on the linksys router.

0 Kudos

sej7278
Super User
In response to Rog

on ‎26-06-2012 11:21 PM

do you get to keep your static ip that went with your adsl account when switching to fibre?

 

i could do without setting up forward/reverse dns, firewalls etc. again.

0 Kudos

Rog
Member
In response to sej7278

on ‎27-06-2012 08:01 PM

Yes if you specify it on the order.

0 Kudos

dsldoctor
Member

on ‎14-10-2015 03:36 PM

Is the fibre box a router,or a mobem.
If its a router does that not take the static ip address. Then providing an ip address for your router which will be private. So dmz can be set 🙂
0 Kudos

spank
Grand Guru

‎26-10-2015 12:42 AM - edited ‎26-10-2015 12:44 AM

Hi there,

 

DMZ won't work with multiple IP(no nat addresses).  If you want to use DMZ call BT and ask for a single static instead.  The reason for this is that DMZ uses DHCP to assign the WAN address to the DMZ host and the WAN address on the multi IP package is always dynamic.

 

To properly forward VPN you need to use the pre defined PPTP rule in the firewall or the GRE47 protocol will not be forwarded.  Setting up 1723 on it's own is not enough.

 

Thanks

0 Kudos