Find the perfect gift for the grad in your life with Graduation gifts that connects us from AT&T.
ATTHelpForums's profile
Community Support

Community Support

 • 

2.7K Messages

Friday, October 20th, 2017 5:34 PM

Closed

Bridge-mode vs IP Pass-through - Info from the AT&T Community

Learn how to set up your own router

 

The Arris BGW210-700 BGW320 is an advanced residential gateway that supports VoIP, IPv6, video delivery, security firewall, and extensive remote management features. 

 

The BGW210-700 Broadband Gateway delivers robust video, primary line telephony, and high-speed data over broadband networks via high-speed Internet connectivity.

 

The four Gigabit Ethernet ports can be separated into different services allowing the configuration of dedicated ports for data. It is designed for advanced DSL network service deployments and supports Quality of Service (QoS) and IP Passthrough.

Heads up: MAC Filtering has been disabled on the 5268AC. If you are in need of a modem that requires MAC Filtering, please reach out to us in the AT&T Community

 

Determining the Business Need

You may need your gateway configured or placed into a Bridged Mode. The internet architecture does not allow for bride mode, but you can setup IP Passthrough, which should allow for most of the same things. 

 

IP Passthrough means the AT&T supported CPE device terminates the DSL, authenticates with the network (Receives a WAN IP) and shares that IP address with a single device connected to the AT&T supported CPE equipment. This configuration is often times suitable for a business customer desiring to connect third party equipment to AT&T supported equipment. The IP Passthrough configuration still allows AT&T support groups to access the AT&T supported equipment while allowing end-users to connect third party equipment in a configuration they desire. The IP Passthrough configuration will only allow one connection to AT&T supported equipment to be "unfiltered" or pingable from the WAN or internet side of the AT&T equipment (does not support multiple pingable connections).

 

The IP Passthrough feature allows a single PC on the LAN to have the AT&T Gateway's public address assigned to it. It also provides port address translation (PAT) or network address and port translation (NAPT) via the same public IP address for all other hosts on the private LAN subnet.

Using IP Passthrough, the public WAN IP is used to provide IP address translation for private LAN computers. The public WAN IP is assigned and reused on a LAN computer.

 

Note: Remember to make a copy of all current IP settings before proceeding.

 

Configuring IP Passthrough

Run your Web browser application, such as Firefox and Chrome, from the computer connected to the Arris BGW210-700 and BGW320. 

  • Enter http://192.168.1.254 in the Location text box. 

  • Click the IP Passthrough tab and configure your settings. 

Dynamic host configuration protocol (DHCP) address serving can automatically serve the WAN IP address to a LAN computer.

 

When DHCP is used for addressing the designated IP Passthrough computer, the acquired or configured WAN address is passed to DHCP, which will dynamically configure a single servable address subnet, and reserve the address for the configured PC's MAC address. This dynamic subnet configuration is based on the local and remote WAN address and subnet mask.

 

  • The two DHCP modes assign the needed WAN IP information to the client automatically.

    • You can select the MAC address of the computer you want to be the IP Passthrough client with fixed mode or with first-come-first-served dynamic. The first client to renew its address will be assigned the WAN IP.

     

  • Manual mode is like statically configuring your connected computer. With Manual mode, you configure the TCP/IP Properties of the LAN client computer you want to be the IP Passthrough client. You then manually enter the WAN IP address, gateway address, and so on that matches the WAN IP address information of your AT&T device. This mode works the same as the DHCP modes. Unsolicited WAN traffic will get passed to this client. The client is still able to access the AT&T BGW210 device and other LAN clients on the 192.168.1.x network.

  • DHCP Lease: By default, the IP Passthrough host's DHCP leases will be shortened to two minutes. This allows for timely updates of the host's IP address, which will be a private IP address before the WAN connection is established. After the WAN connection is established and has an address, the IP Passthrough host can renew its DHCP address binding to acquire the WAN IP address. You may alter this setting. 

  • Click Save. Changes take effect upon restart.

 

Note: IP Passthrough Restriction

Since both the BGW210 Internet Gateway and the IP Passthrough host use the same IP address, new sessions that conflict with existing sessions will be rejected by the BGW210. For example, suppose you are working from home using an IPSec tunnel from the router and from the IP Passthrough host. Both tunnels go to the same remote endpoint, such as the VPN access concentrator at your employer's office. In this case, the first one to start the IPSec traffic will be allowed; the second one from the WAN is indistinguishable and will fail.

 

Jared, AT&T Community Specialist

 

AT&T Help

Need help with an account specific question?  Post a new question here on the forums by clicking the "Ask a Question" button.
For additional support, please visit us at our AT&T services hub.

*I am an AT&T employee, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.

Still need help? Ask a question! Our 1.4 million members typically respond within 1 hour.

4 Attachments

New Member

 • 

27 Messages

2 years ago

i think this might be similar conversation to what i need as well

https://forums.att.com/conversations/att-fiber-equipment/pfsense-to-replace-att-bgw320-router-and-static-ip-at-home/621b1bdbe825485e265da68f

New Member

 • 

2 Messages

1 year ago

Wow, so I love the progression of this thread - madness - and we're still experiencing issues - Did everything right, then wrong, then right again only to end up back where I started - Double NAT. Ugh. 

ACE - Expert

 • 

35.6K Messages

1 year ago

@hugdealer , if you have double NAT, something didn't go correctly.  Verify that the WAN IP of your router is the same as the WAN IP of the Gateway.

New Member

 • 

2 Messages

1 year ago

@JefferMC It is. The WAN IP is the external IP, but when I do a tracert against whatever, still see two private IPs in front of the public. I see my router IP, the ATT hardware IP and then the public... That's most definitely double NAT, right?

(edited)

ACE - Professor

 • 

5.6K Messages

1 year ago

@hugdealer 

The last time I chased this windmill I came to the conclusion what you described is a fact that cannot be circumvented.  
The way I chose to deal with the issue is to run my router as an AP.  I don’t need anything exotic here, just to replace the pitiable WiFi in the gateway.  I’m content to let the Arris device handle routing functions.   
Having said all this one can understand why a community of users go to great lengths to simply do away with the BGW210 altogether.  

New Member

 • 

2 Messages

1 year ago

I don’t know if the 210 is bad at routing but I know it’s not as good as my Firewalla Gold which is why I want to dump it. I just wish AT&Ts network would allow us to dump their equipment completely and not jump through all these hoops to get our own routers working. 

ACE - Expert

 • 

35.6K Messages

1 year ago

@hugdealer yes, the Gateway router and your router will both be hops; there is still IP routing going on.  And the Gateway will be maintaining a session table and may do PAT in some limited circumstances.  However, the Gateway will not be performing NAT on the traffic from your router; your router will be doing the only NAT, which means it's not double-NAT.

Yes, you can decide to make your router an access point and get rid of that hop; which means you lose any layer 3 functionality that your router could be doing for you that you may have purchased it to do.  The same number of devices will still be processing the traffic, it's just one will only be operating at layer 2 instead of layer 3 and will not count as a hop to a protocol operating at layer 3.

(edited)

ACE - Expert

 • 

35.6K Messages

1 year ago

@Productguy how "good a router" does the BGW210 have to be when it's just passing traffic through? 

If frogs had wings they wouldn't bust their butt every time they landed.  AT&T is quite happy with the current arrangement and it doesn't seem to be costing them significant market share, so I don't expect them to change.  

1 Message

6 months ago

This is all good!  But what about those of us with less technical skill who are having problems with ATT fiber.  Like losing the internet right in the middle of a transaction.  Should have stayed with the old system but those told that would be gone soon.  So whats up for the non- tech users

J. Lucas

ACE - Professor

 • 

5.6K Messages

6 months ago

@Jonath1031 

If you're having an issue you need help with, start your own thread please.

And, if you're not tech savvy, don't bother with this topic at all unless there's a compelling reason to do so.  

Not finding what you're looking for?
New to AT&T Community?
New to the AT&T Community? Start by visiting the Community How-To.
New to the AT&T Community?
Visit the Community How-To.