ATTHelpForums's profile
Community Support

Community Support

 • 

2.7K Messages

Friday, October 20th, 2017 5:34 PM

Closed

Bridge-mode vs IP Pass-through - Info from the AT&T Community

Learn how to set up your own router

 

The Arris BGW210-700 BGW320 is an advanced residential gateway that supports VoIP, IPv6, video delivery, security firewall, and extensive remote management features. 

 

The BGW210-700 Broadband Gateway delivers robust video, primary line telephony, and high-speed data over broadband networks via high-speed Internet connectivity.

 

The four Gigabit Ethernet ports can be separated into different services allowing the configuration of dedicated ports for data. It is designed for advanced DSL network service deployments and supports Quality of Service (QoS) and IP Passthrough.

Heads up: MAC Filtering has been disabled on the 5268AC. If you are in need of a modem that requires MAC Filtering, please reach out to us in the AT&T Community

 

Determining the Business Need

You may need your gateway configured or placed into a Bridged Mode. The internet architecture does not allow for bride mode, but you can setup IP Passthrough, which should allow for most of the same things. 

 

IP Passthrough means the AT&T supported CPE device terminates the DSL, authenticates with the network (Receives a WAN IP) and shares that IP address with a single device connected to the AT&T supported CPE equipment. This configuration is often times suitable for a business customer desiring to connect third party equipment to AT&T supported equipment. The IP Passthrough configuration still allows AT&T support groups to access the AT&T supported equipment while allowing end-users to connect third party equipment in a configuration they desire. The IP Passthrough configuration will only allow one connection to AT&T supported equipment to be "unfiltered" or pingable from the WAN or internet side of the AT&T equipment (does not support multiple pingable connections).

 

The IP Passthrough feature allows a single PC on the LAN to have the AT&T Gateway's public address assigned to it. It also provides port address translation (PAT) or network address and port translation (NAPT) via the same public IP address for all other hosts on the private LAN subnet.

Using IP Passthrough, the public WAN IP is used to provide IP address translation for private LAN computers. The public WAN IP is assigned and reused on a LAN computer.

 

Note: Remember to make a copy of all current IP settings before proceeding.

 

Configuring IP Passthrough

Run your Web browser application, such as Firefox and Chrome, from the computer connected to the Arris BGW210-700 and BGW320. 

  • Enter http://192.168.1.254 in the Location text box. 

  • Click the IP Passthrough tab and configure your settings. 

Dynamic host configuration protocol (DHCP) address serving can automatically serve the WAN IP address to a LAN computer.

 

When DHCP is used for addressing the designated IP Passthrough computer, the acquired or configured WAN address is passed to DHCP, which will dynamically configure a single servable address subnet, and reserve the address for the configured PC's MAC address. This dynamic subnet configuration is based on the local and remote WAN address and subnet mask.

 

  • The two DHCP modes assign the needed WAN IP information to the client automatically.

    • You can select the MAC address of the computer you want to be the IP Passthrough client with fixed mode or with first-come-first-served dynamic. The first client to renew its address will be assigned the WAN IP.

     

  • Manual mode is like statically configuring your connected computer. With Manual mode, you configure the TCP/IP Properties of the LAN client computer you want to be the IP Passthrough client. You then manually enter the WAN IP address, gateway address, and so on that matches the WAN IP address information of your AT&T device. This mode works the same as the DHCP modes. Unsolicited WAN traffic will get passed to this client. The client is still able to access the AT&T BGW210 device and other LAN clients on the 192.168.1.x network.

  • DHCP Lease: By default, the IP Passthrough host's DHCP leases will be shortened to two minutes. This allows for timely updates of the host's IP address, which will be a private IP address before the WAN connection is established. After the WAN connection is established and has an address, the IP Passthrough host can renew its DHCP address binding to acquire the WAN IP address. You may alter this setting. 

  • Click Save. Changes take effect upon restart.

 

Note: IP Passthrough Restriction

Since both the BGW210 Internet Gateway and the IP Passthrough host use the same IP address, new sessions that conflict with existing sessions will be rejected by the BGW210. For example, suppose you are working from home using an IPSec tunnel from the router and from the IP Passthrough host. Both tunnels go to the same remote endpoint, such as the VPN access concentrator at your employer's office. In this case, the first one to start the IPSec traffic will be allowed; the second one from the WAN is indistinguishable and will fail.

 

Jared, AT&T Community Specialist

 

AT&T Help

Need help with an account specific question?  Post a new question here on the forums by clicking the "Ask a Question" button.
For additional support, please visit us at our AT&T services hub.

*I am an AT&T employee, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.

Still need help? Ask a question! Our 1.4 million members typically respond within 1 hour.

4 Attachments

Mentor

 • 

38 Messages

7 years ago

Oh cool, thanks for clearing that up!  Going to have to change quite a few static IPs in my network, but if this works, it'll be well worth it

Mentor

 • 

38 Messages

7 years ago

You rock!  I changed my firewall's subnet to 10.x.x.x and everything started working right off the bat!  I did not set up cascaded router, just IP passthrough.

 

Thank you so much!

Tutor

 • 

7 Messages

7 years ago

Glad to know that it worked for you. 🙂 Have fun.

Voyager

 • 

2 Messages

7 years ago

Thank you for the tips rreddy. This is better info than I've found elsewhere online. If you have it in you to provide just a bit more advice to a networking non-expert, I'm getting error messages indicating that my subnet mask isn't compatible with my Network address, even though I'm using the IP address and the Subnet indicated by my AirPort Extreme. Any insights?  

Community Support

 • 

230.7K Messages

7 years ago

Hi,

 

What subnet and network address are you using?

 

-ATTU-verseCare

Tutor

 • 

7 Messages

7 years ago

Hi darronia,

 

Sorry for the late response - you would typically get this error if you are using a Subnet mask that is not identified by a router - Check to make sure you are using 255.255.255.0 subnet or 255.255.0.0; I am guessing the subnet on the airport extreme may be using 255.255.252.0 which may be the cause of the issue. I am no network expert but i hope this helps.

 

Regards,

Mentor

 • 

27 Messages

7 years ago

I cannot get this to work for me at all. I have a Juniper SRX345 that I want to be the main router/DHCP server for my home network clients. At the moment I have IP Passthrough on the BGW210-700 configured with the cascaded router settings of:

 

Cascaded Router: On

Cascaded Router Address: 0.0.0.0

Network Address: 172.32.31.0

Subnet Mask: 255.255.255.128

 

I have an ethernet cable plugged into ge0/0/0 of my SRX with dhcp enabled.  I have turned OFF the wifi, DHCP, packet-filters, firewall on the ATT provided router and still the SRX isn't receiving any DHCP passthrough address on the ge0/0/0 (outside interface). Having the ATT in bridge mode is exactly what I want but it's not working for me.  Additionally points, following the instructions above, I am unable to add my SRX's mac to the Passthrough screen as this is an field I cannot edit. I can only say PASSTHROUGH YES and then there's a MANUAL choice but that's it for this screen.  Any help would be greatly appreciated. Right now I'm still using my Comcast with another SRX until I can ge this guy going. Paying double the prices monthly isn't favorable.

Tutor

 • 

8 Messages

7 years ago

I'm also having trouble setting this up with an AirPort Extreme. If someone can please provide step by step instructions, that would be appreciated. I tried the steps from an earlier post, but I keep getting an error saying Cascaded Network Router address must be WAN side subnet.

Mentor

 • 

27 Messages

7 years ago

You dont need cascaded router. Please turn that feature OFF. All you need is passthrough ON. If you're in the firewall screen and find that the field are not able to be edited, RESET the router back to factory resets (this was my issue) and go back and turn on IP PASSTHROUGH again. Those fields should now be editable.  Turn off MANUAL and use the DHCP option to pass the IP to your router.  You can put your routers MAC address there if you like. I didn't do that, it saw it on the other end and I just chose my device. YOU MUST LEAVE DHCP TURNED ON WITHIN HOME NETWORK LAN & SUBNET (I might be getting the exact name wrong as I'm not looking at it at the moment, but the place you would configure DHCP for clients if you connected them to the ATT router is where I am talking about). If you dont have DHCP turned on, then IP Passthrough will not work. What I did was just have the scope set to 3 because I'm a paranoid Network Security guy, lol. This feature allows the PUBLIC IP that would have normally gone to the ATT router, pass-through to your connected router.  This is my setup and now it's working great.

Tutor

 • 

8 Messages

7 years ago

Where did you set the scope you're referring to?

Thanks for the instructions!
Not finding what you're looking for?
New to AT&T Community?
New to the AT&T Community? Start by visiting the Community How-To.
New to the AT&T Community?
Visit the Community How-To.