Skip to main content
AT&T Community Forums

Tutor

 • 

5 Messages

Mon, Jan 29, 2018 12:33 AM

BGW210 Port forwarding: Dropping most packets to specified port

Hi!

I have a couple of computers on my network that need specific ports forwarded to them. This is usually no big deal and the BGW210 interface is quite user friendly. I am however experiencing quite a bit of packet loss only with traffic aimed at the specific forwarded ports... the rest of the internet is running smoothly. I've been experimenting all weekend and have it whittled down to a very simple setup: one desktop with ethernet connected to the BGW router. Once configured:

 

1) I can see the open port on CanYouSeeMe.org! 🙂

image.png

 

2) From any computer on my LAN, and specifically from the computer with the open port I can psping the computer:port and get consistent responses 🙂

image.png

 

3) While attempting to psping my external IP from the computer that has the open port I get timeouts very consistently on 2 out of 3 accesses. 😞     (the first access very consistently always works)

 

image.png

There is nothing in the router firewall/system logs for the time period of the above

 

One more data point: Before I realized something was broken, I had a device outside my network periodically phoning home by pushing a bit of data inward and I noticed that only about half of the records actually made it.

 

Non preferred aside: Setting my computer to Default Server did not improve things (I also tried un-forwarding the port), but IP PassThrough did.  Unfortunately that only works for one address and I need two, so Id very much like to get just basic port forwarding working reliably but I'm not sure what to try next.  If anyone has any other thoughts, I would appreciate hearing them.

3 Attachments

Responses

Brand User
ATTHelp

Community Support

 • 

124.1K Messages

2 years ago

Hello @blindell!


Thank you so much for reaching out to us over our Community Forums!  I hate to hear you’ve been having such difficulty.  I’ll be more than happy to help out!


To get started, I’d like to know how many hops it goes through before you start experiencing this packet loss.


I would also like to ensure your firewall settings are correct to ensure this isn’t the cause of the packet loss.  The advanced settings in your firewall should be as follows:


Drop packets with invalid source or destination IP address: Off

Protect against port scan: Off

Drop packets with unknown ether types: Off

Drop packets with invalid TCP flags: Off

Drop incoming ICMP Echo requests to LAN: Off

Drop incoming ICMP Echo requests to Device LAN Address: Off

Drop incoming ICMP Echo requests to Device WAN Address: Off

Supress ICMP error responses: Off

Flood Limit: Off


Flood rate limit: N/A


Flood burst limit: N/A


Flood limit ICMP enable: N/A

Flood limit UDP enable: N/A

Flood limit TCP SYN-cookie: N/A

ESP ALG: On

SIP ALG: On


If you’re still having trouble, I recommend reaching out to our ConnecTech team.  They can be reached at 866-294-3464.


Thank you so much for your time!  Have a wonderful remainder of your day!


Amethyst, AT&T Community Specialist

Still need help? Ask a question! Our 1.4 million members typically respond within 1 hour.

*I am an AT&T employee, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.

Tutor

 • 

5 Messages

2 years ago

Hi Amethyst!

     I suppose the number of hops is 2:  From the computer to the router (ethernet), then back to the computer (same ethernet cable).  I suspect that internally the router has a few different levels, because if I move the service to another computer (same LAN) I send the traffic no problem despite it being the same number of hops - I only experience an issue when I try and route through the *external* IP address of the router.  That's unfortunately the incomming case: any external traffic coming in to my network must traverse that seemingly lossy/buggy link.  The consistency of the loss makes me suspect the router's firmware, but that my be my profession leaking in to my home life.

 

    Although I should have mentioned it, I have completely disabled all the packet filter rules, the firewall rules and all "advanced firewall" settings as you suggested.  I also completely reset the router's firmware and applied the above again to no avail.

Tutor

 • 

5 Messages

2 years ago

Well I've had a fun few hours having spoken with 7 different ATT reps including the much vaunted paid service "ConnectTech" and something called "Uverse Concierge".  Although we have not yet been successful I appreciated all their efforts, and thought it worth documenting here in case someone else has this problem.  In lieu of a solution I've asked to be sent a different model modem and will attempt to do basic port forwarding on it when it gets here 🙂  The only thing I'm more impressed with than the number of round-the-world games of telephone handoff is the courtesy and politeness of the ATT staff.

 

Unfortunately, the cure-all that most techs jump to is "IP Passthrough".  This does not work if you need various ports to go to more than one computer.  This is also quite an exposed way to connect external services - I would not recommend this normal people, myself included.  Additionally it didn't even work for the one computer configured for me - my prior result was a mixup related to how I was testing it.

 

While I don't expect this to be solved by anyone, here's a bunch of useful troubleshooting tools that gosh darn it should have led me to an answer, so I hope they're useful to ya'll:

PortListener opens any port youd like and lets you know when something connects:  http://www.rjlsoftware.com/software/utility/portlistener/

PsPing allows you to "ping" a specific port, to check to see if you can get traffic to it: https://docs.microsoft.com/en-us/sysinternals/downloads/psping

WireShark captures all traffic flowing through your network adapter, letting you see your router refusing to talk to you:  https://www.wireshark.org/

 

 Wireshark below, using port 10000, an arbitrary port I was testing with

wireshark.png

 

Cheers!  Happy solution hunting to you all!

Tutor

 • 

5 Messages

2 years ago

As suspected, the problem was within the router itself.  Replacing it with a 5268AC has resulted in port forwarding that works as expected.

 

I'm unsure if the behavior was specific to my BGW210 router, my router firmware build, or my router model, but if anyone else experiences similar difficulties I would recommend reproducing it as in my first post and then asking for a different router model.

 

While exceedingly polite and patient in the face of a challenging problem I did not find the "ConnectTech" or other phone technical support layers suitable for troubleshooting technically involved problems, with the layers below ConnectTech occasionally resorting to inventing technical phrases using words I'm not convinced they knew the meanings of in an apparent attempt to get me to give up and go away.  While this causes me no harm, I worry it could have deterred someone with less domain relevant training or employment and thus would not recommend the services to other ATT customers.

phoner2

Teacher

 • 

12 Messages

2 years ago

OMG I'm having the exact same problem, and spent over 3 hours with the bogus tech support. I started explaining to them the problem but it was going nowhere, and I couldn't understand why they weren't even interested in actually troubleshooting.  On the BGW210 logs I see the request come in with action=DROP reason=POLICY, tried turning all the firewall settings to OFF and disable Packet filter, no change. I'm not sure if it's permanent but I did find a workaround, after setting the firewall settings to off (maybe only one of them is needed to be off, not sure which) then go into Dignostics:Resets, do the 3rd choice "Restarting your device will disconnect all users and restart all device subsystems..." This reset must remove the offending firewall rule and get it working again, then my assumption is with the firewall setting off it won't block again. So far this has been working for me,  I may request another model as well.

 

Contributor

 • 

1 Message

2 years ago

removed 

Tutor

 • 

7 Messages

a year ago

I'm getting excessive packet losses on my traceroute report using the BW210 as well and can't find a solution as to how to fix it. I'm getting lots of lag that goes to my PS4 and have a good feeling that this is the cause of it. Although my internet speeds fluctuate like crazy on the PS4 they are high enough to not have any issues playing games online. Of the 23 hops that i ran on the traceroute report I receive 14 (***)/timeouts on the reports. My settings on my router are as follows:

 

Ethernet connection to the PS4

Port Forwarding for the following ports (UDP - 3074, 3478-3479, 3659, 6000)(TCP -80, 443, 1935, 3478-3480, 3659, 10000-10099, 42127)

IP passthrough turned on

Packet filtering disabled

 

When my Mac book pro is connected to the same router I get 930 MBPS Upload and download speeds consistently where my PS4 inconsistently get 150-350 download and 4 mbps to sometime 220 mbps. I just don't know what I'm doing wrong as I've tried everything to fix this issue. And although there are times that the game runs smooth as can be it is hit or miss when I'm playing on whether there will be latency or not. 

 

Any input would be greatly appreciated, thank you in advance...Chiromike

phoner2

Teacher

 • 

12 Messages

a year ago

Request the router be replaced with a 3801HGV, I've not had this issue once on this router.

Get started...

Ask a new question