NAT Loopback on 5268AC

BarryTR, can you please post your new modem's model number? Thanks!

BarryTR, please let us know the modem you got from AT&T. 

What a great thread. So glad I found this and so appreciative of all of the posts here. Thanks very much all.

I too was solicited to upgrade my perfectly fine 2Wire modem/router to a 5268AC and quickly found the missing NAT Loopback feature, which meant I could still access my wireless cameras externally, but not while connected to my LAN. My previous speed was fine and I'm not finding the 5G useful at all. I feel like I've been duped into paying the same price for a lesser set-up. Its really hard to decide who is the bigger poison: Time Warner or ATT; they're both terrible.

Nicely stated, @720Jeff. I feel like this forum is a support group for a bunch of "fellow victims" that have fallen prey to the infamous AT&T "router upgrade" offer! Luckily, I had a spare router on-hand that I was able to use to work around this problem, but had it been necessary to go out and buy a new router, I would not have been a happy camper! In that case, I think I would have wound up either insisting that AT&T provide me with a different router (one that supported the NAT loopback feature) or "undoing" the "upgrade" and restoring my old service and router.

As for internet (and TV) service providers, it's a giant shell game, hopping from one provider to another in the hope of getting better customer service and/or a lower price (usually for a limited period of time). To borrow a line from the movie The Blues Brothers, "Yeah, they're all pretty bad." 

I suspect this scenario is a job for Real Router Man!

I seem to have had a lot of luck using Ubiquity Edge X router to completely handle all IP's in raw DMZplus mode.  Even the cheap models can be picked up new for around $65, and they do hairpin, multi-nat firewalling, and lots more at blazing speed.

The only downside is you'll likely need to place your own WiFi Access Point behind the Ubiquity router, since AT&T modem access point WiFi apparently doesn't support hairpin routing upstream.  But many folks tend to use their own AP's anyway and turn off the AT&T WiFi.

yours truly'

- Rick

Related
  - https://www.ubnt.com/products/#edgemax

How did you get port forwarding to work with that gateway?  I can't get port forwarding to work on my 5268AC at all, in fact AT&T tech support just told me the only way to get it to work is to purchase a block of 8 static IPs for them..  I set them all, and then every check tool says port is closed.. period

Sad thing is, the 5268 hardware is fully capable, I helped make it!

Unfortunately, as stated back in sept, att seemingly intentionally broke the following standardized protocol in their firmware and you'll be chasing ip addresses forever to try and access externally.

reason: "TCP/UDP hole punch summary section 5.1 of the RFC 5128 document and req-9 listed in document BCP 127 - "NAT must support Hairpinning"

how do you port forward?

A-navigate through the goofy UI and tediously define and then add device profiles to firewall page and then expose your entire network by enabling dmz mode. Safer/Easier to just buy your own standard router and do this all w ease. FYI - even after you do all this, att's bogus fw will never work/forward reliably outside your home network due to protocol failure I listed above, which is why I will never be a customer until they fix. Also, I wouldn't buy static ips from att, it's sales gimmick and they try and charge for support when statics fail work properly on atts end!

if not satisfied, just open BBB or FCC ticket and you'll get their attention.