Pre-order the New Samsung Galaxy Z Flip4 & Galaxy Z Fold4 and, for a limited time, get twice the storage and a free case!
Need help with your equipment?
cocksy's profile
cocksy
#1 Star!
25,000 views
50,000 views

Teacher

 • 

25 Messages

Tue, Nov 27, 2012 4:03 AM

Forwarding port 443 for WHS - conflict with connectToCiscoAP

I previously had my WHS set up and working fine for remote web acces for use with my AT&T Uverse internet. However, I think the RG has recently had a software update or something, as it has lost all my settings. Now, when I try and set it up to open ports 433, 4125 and 80 for WHS, it comes up with the following error:

 

WHS Ports conflicts with connectToCiscoAP which is currently in use on Cisco_AP_ATT.

WHS Ports and connectToCiscoAP use the same resources and cannot both be hosted at the same time. To use WHS Ports, you must first remove connectToCiscoAP from the application list of Cisco_AP_ATT. Alternatively, you can install the applications on one computer and add both application profiles to the application list for that computer.

 

Any idea whether its safe to remove the "connectToCiscoAP" rule and allow my rule so that I can connet to my WHS from the web? Will it mess up my TV or wireless TV receiver or something? I don't recall having this issue last time I set it up, but may have forgotten!! Many thanks.

Computer_Joe

Master

 • 

5.9K Messages

10 y前


@JefferMC wrote:

 

Won't the 2WIRE do port translation in the Port Forwarding rules?

 

 


 

 

 

They didn't have port triggering or port forwarding back when I had one, but that was 4 years ago. It would be easy enough to find out if they've added it since then. Just go to the port forwarding page and see if they have an entry for both external and internal port numbers.

 

Somejoe would have the definative answer I bet.

 

 

 




__________________________________________________________
How can you be in two places at once, when your not anywhere at all?
------------------------------------------------------------------------------------------------------
I really want to become a procrastinator, but I keep putting it off.
------------------------------------------------------------------------------------------------------
There are three kinds of people, those that can count, and those that can't.
------------------------------------------------------------------------------------
“Our great democracies still tend to think that a stupid man is more likely to be honest than a clever man, and our politicians take advantage of this prejudice by pretending to be even more stupid than nature has made them." :Bertrand Russell

cocksy

Teacher

 • 

25 Messages

10 y前

Thanks for the info computer-Joe, I'll take a look into that. I do have a spare cable router lying around that might work, but is only 100MBPs, rather than Gbit, so not ideal.

I haven't been able to do much digging on the WHS 2011 changing the ports, but I'll take a look over the weekend. Thanks again.
SomeJoe7777

Expert

 • 

9.4K Messages

10 y前

Yes, the 2Wire can do port translation, but I didn't suggest that as a solution because in this case, the WHS has links and functionality on the non-encrypted HTTP site (port 80) that refer to the secure site without specifying a port. This means that clicking on those links will fail, since the external web client will be trying to go to port 443, when it should go to 4433.

Only if the WHS is aware that the secure site is supposed to be running on 4433 (or another alternate port) will the links work correctly.

Furthermore, if you use port translation like this (not just for WHS, but for any service) then that means that the URL to get to the service is different depending on whether you're inside the network or outside the network. This screws up things like bookmarks, because they'll only work from the side of the network they were created from.

Computer_Joe

Master

 • 

5.9K Messages

10 y前


@SomeJoe7777 wrote:
Yes, the 2Wire can do port translation, but I didn't suggest that as a solution because in this case, the WHS has links and functionality on the non-encrypted HTTP site (port 80) that refer to the secure site without specifying a port. This means that clicking on those links will fail, since the external web client will be trying to go to port 443, when it should go to 4433.

Only if the WHS is aware that the secure site is supposed to be running on 4433 (or another alternate port) will the links work correctly.

Furthermore, if you use port translation like this (not just for WHS, but for any service) then that means that the URL to get to the service is different depending on whether you're inside the network or outside the network. This screws up things like bookmarks, because they'll only work from the side of the network they were created from.



So, if the OP is just looking for personal remote access to their server/shares (as opposed to putting up a public server/site) they can create an external book mark that points directly to the the secure port and just bypass the unsecure port? Besides, one extra bookmark (one for internal access and one for external access) aint gonna break the bank.

 

If there's no public website, the most you should get by going to the unsecure port should be a link to the secure login page, and maybe not even that if the OP has the certificates set up to deny any other external access other than the OP's computer(s).

 

 

 




__________________________________________________________
How can you be in two places at once, when your not anywhere at all?
------------------------------------------------------------------------------------------------------
I really want to become a procrastinator, but I keep putting it off.
------------------------------------------------------------------------------------------------------
There are three kinds of people, those that can count, and those that can't.
------------------------------------------------------------------------------------
“Our great democracies still tend to think that a stupid man is more likely to be honest than a clever man, and our politicians take advantage of this prejudice by pretending to be even more stupid than nature has made them." :Bertrand Russell

Computer_Joe

Master

 • 

5.9K Messages

10 y前


@cocksy wrote:
Thanks for the info computer-Joe, I'll take a look into that. I do have a spare cable router lying around that might work, but is only 100MBPs, rather than Gbit, so not ideal.

I haven't been able to do much digging on the WHS 2011 changing the ports, but I'll take a look over the weekend. Thanks again.

 

 

The 2WIRE is only 100Mbps as well. If you're already using a Gigabit switch downstream from the 2WIRE just move it so it's downstream from your own router instead.

 

Although I've given you some alternative solutions (not necessarily perfect solutions), my opinion is that the cheapest and cleanest solution is to go buy some CAT5/6 and hard wire your wireless STB and ditch the WAP, or a little more expensive, go with power-line ethernet adapters if you absolutely can not run CAT5/6 to the wireless STB.

 

 


__________________________________________________________
How can you be in two places at once, when your not anywhere at all?
------------------------------------------------------------------------------------------------------
I really want to become a procrastinator, but I keep putting it off.
------------------------------------------------------------------------------------------------------
There are three kinds of people, those that can count, and those that can't.
------------------------------------------------------------------------------------
“Our great democracies still tend to think that a stupid man is more likely to be honest than a clever man, and our politicians take advantage of this prejudice by pretending to be even more stupid than nature has made them." :Bertrand Russell

SomeJoe7777

Expert

 • 

9.4K Messages

10 y前

CJ is correct, you can run port translation if you're OK with logging into the secure site directly (assuming WHS allows that without issue, which I'm not sure of). And if you're OK with possible bookmarking oddities.

And yes, the alternate solutions are also viable, including hard-wiring the STB using Ethernet or powerline adapters and getting rid of the STB wireless access point.
Need help?
New to AT&T Community?
New to the AT&T Community? Start by visiting the Community How-To.
New to the AT&T Community?
Visit the Community How-To.