U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?

Teacher

U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?

[ Edited ]

I am having trouble properly configuring this AT&T 2Wire 3600HGV modem for my network. Maybe someone is aware of a different firmware for this product?

 

I am completely aware of how to setup the DMZ mode & router behind router setup in these boxes but that is NOT the point. (We have supported firewalled networked equipment working that has all the bells & whistles including QoS)

 

In the event of a factory reset of the AT&T 2Wire VDSL modem at this business, I want to properly insure the following business requirements are met:

- DHCP - OFF (at min, it appears you must leave one available?)

- WiFi - OFF (Yes this can be turned off, but bridging it always insured it was turned off in the past. ON is a security concern among just bad business i.e. conflict with other business WiFi, employees might see/use this non-content filtered WiFi, etc etc)

- & passing off internet service needs to be easy to another networked supported OUTSIDE of AT&T firewall. (I'm NOT asking for AT&T support on this, but in the bridge DSL world, this was EASY)

- if bridging this 2Wire is NOT an option, backing up the configuration settings would be a nice alternative but that is not available as well?

 

Bridging the old DSL modems always worked nicely but the 2Wire 3XXXHGV line appears to be the ONLY ones to support the AT&T VDSL Max Turbo speeds. 24Mbps down / 3 Mbps up which we use not only for normal business operations (credit cards, business email, web based training, etc) but this high speed is required to view onsite security video (3Mbps up) and offer customers FAST free WiFi!

 

AT&T U-Verse offers the right price, contract, speed, internet package & installers to properly handle our resturant locations company's data needs but I'm struggling with the their "business" support of this 2Wire VDSL modem product. We ONLY use the internet, no TV (not legally available for restaurants, yet). No Voip because POTS is our reliable backup. So it's just the internet service ...

 

For coverage on AT&T Uverse, we have over 50 locations lit up like a Christmas tree but sadly business support on this product is driving me nutz! Maybe because I now see this is listed under "Residential Gateway"? Is this AT&T 2Wire VDSL modem product not meant for business? Is anyone aware of another supported AT&T VDSL modem or a different 2Wire firmware available? Official AT&T support has me running in circles (AT&T U-verse support > AT&T Connecttech > AT&T Connecttech360 > AT&T U-verse support, rinse, repeat)  

 

help?

Message 1 of 636 (565,670 Views)

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

I thought they needed to be on different subnets? Can I keep them on the
same subnet? Based on that I got 5 static IP's is it possible to use one
more with a second router the same way?

Thank You

--
John
Message 481 of 636 (2,870 Views)
Expert

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

Whether they should be on different subnets depends on how you have things hooked up and what you're trying to do, which I have not been able to deduce from your posts because you're not giving much information. Please answer the following questions:

1. What is your goal for your network that is not solved in the standard U-Verse setup?
2. Do you have static IPs?
3. What (private) subnet is assigned to the LAN of the 2Wire and what is the 2Wire's LAN IP address?
4. What (private) subnet is assigned to the LAN side of your Linksys and what is the Linksys's LAN IP address?
5. What steps/procedures in this thread have you already done? (Post 2? Post 13?)

Message 482 of 636 (2,861 Views)

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

Sorry for the lack of information




Whether they should be on different subnets depends on how you have things
hooked up and what you're trying to do, which I have not been able to
deduce from your posts because you're not giving much information. Please
answer the following questions:

1. What is your goal for your network that is not solved in the standard
U-Verse setup?
I have a windows 2012 domain and all of my servers are using static IP's. I
am running an Exchange 2013 server that I want to open ports 25 and 443 on.
That is best run with a static IP
2. Do you have static IPs?
Yes on Exchange 2013 and my 2 Server 2012 DC's
3. What (private) subnet is assigned to the LAN of the 2Wire and what is
the 2Wire's LAN IP address?
The private subnet assigned to the 2wire is 172.16.15.x,
4. What (private) subnet is assigned to the LAN side of your Linksys and
what is the Linksys's LAN IP address?
172.16.16.x router is 172.16.16.254
5. What steps/procedures in this thread have you already done? (Post 2?
Post 13?)

I am using post 2. I rebooted the router after last nights post and it
assigned via DHCP with the IP assigned it. I am running 2 VMware servers. I
have 2 domain controllers, one of which is running server 2012 Essentials
and I would like to open port 443 on that if I could.

On the Exchange 2013 I added a 2nd NIC with the IP 172.16.16.12 same as the
first NIC which is 172.16.15.12 which allows Exchange to semi function. 443
is open but not 25. I am in the LInksys router using port forwarding for
172.16.16.12 (the Exchange server) for port 25 and 443.

I used to have Comcast prior to moving and had a static IP with the Linksys
router and was able to forward those ports and had Exchange fully
functional. i was using log me in to get to everything externally but it
was a trial. I moved here from Utah in June but didn't get things up and
running till later July and got busy and am just now getting to this, been
using Go Daddy for email.

Summary

If I can assign say 172.16.16.253 to the Linksys and use that for my
Exchange server that is easy I may have spent too much time reading too
many posts.

I purchased 5 public IP's from AT&T. Is it possible to use a second router
with a 2nd IP using post 2. Just curious at this point.


That is what I am trying to do, I hope it makes sense.

Thank You for all of your help. I should get in to routing at this point in
my career Smiley Happy
--
John
Message 483 of 636 (2,856 Views)
Highlighted
Expert

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

OK, you will have to make a choice here, because there's two ways to do this:

1. You will have to have all of your servers and systems on private IP addresses (172.16.16.x) behind your Linksys router, and use NAT/PAT on the Linksys to accept inbound connections on various ports (25 and 443) to allow your servers to function.

2. Eliminate the Linksys and use the Internet-routable static IP addresses directly on your servers, and connect your servers directly to the 2Wire.

I recommend choice 1.

To do that, make sure of the following:

1. Make sure your 2Wire is set up for your static IP addresses. They usually give you a block of 8. The first and last are not usable. The second-to-last should be assigned to the 2Wire. This is configured in the 2Wire router under Settings -> Broadband -> Link Configuration. Check the "Add Additional Network", put the 2nd-to-last address of your static IP block into the Router Address field, and put 255.255.255.248 into the Subnet Mask block, then click Save.

2. The Linksys WAN IP address needs to be one of your static IP addresses (one of the remaining 5 in the block). You can assign this statically on the Linksys (recommended), or you can leave the Linksys to use DHCP on the WAN interface, and control the handout from the 2Wire to be one of the IP addresses in the static block. Configure this on the 2Wire via Settings -> LAN -> IP Address Allocation. Find the Linksys in the list, and choose Firewall: Disabled, Address Assignment: Public (Select WAN IP Mapping), WAN IP Mapping: Public Fixed: x.x.x.x.

3. Open ports 25 and 443 for inbound connections on your Linksys, to be sent to the Exchange server's private IP address of 172.16.16.x.

4. Call AT&T and pay their $25 charge to open outbound port 25 for you. This port is blocked in the outbound direction by default for spam control. For your mail server to be able to send mail, this block needs to be removed, and AT&T forces you to pay for it.

5. Change any DNS records (A, MX) for your domain that your mail server will receive mail on to point to the static IP address you assigned to the Linksys in step 2. Mail should begin flowing in.

Message 484 of 636 (2,848 Views)

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

Thank you someJoe. One question I have I don't see a way to disable DHCP on
the 2wire. I am guessing it is the easiest to create a short range for DHCP?

Thank You

--
John
Message 485 of 636 (2,840 Views)
Expert

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

You cannot disable DHCP on the 2Wire, but you also shouldn't need to. All of your computers will be on the LAN side of the Linksys, so they will use the Linksys for DHCP (or be assigned statically).
Message 486 of 636 (2,844 Views)

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

Thank you, do you have a good contact for AT&T to pay to open port 25 or is
it just a hit or miss with the main number?

Thank You

--
John
Message 487 of 636 (2,834 Views)
Expert

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

I believe ConnectTech may be handling this for them now. Call the main number and get to technical support, and just tell them you want to have outbound port 25 opened to run your own mail server. They should know what you want and transfer you.
Message 488 of 636 (2,821 Views)

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT

Thank you, I will try that. I did speak with tech support and they said no.
I will try again.

--
John
Message 489 of 636 (2,810 Views)
Teacher

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?

This also seems to work for AT&T's latest abomination, the Pace 5031NV.  Our router is a Sonicwall TZ200W, but Joe's instructions were so good that I got connected on the first try.  I've thanked him before, but this time: WHATEVER THEY'RE PAYING JOE IS NOT ENOUGH!!!

 

Thanks again, Joe,

Tony Lima

Message 490 of 636 (2,718 Views)
ACE - Expert

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?


TonyLima wrote:

... WHATEVER THEY'RE PAYING JOE IS NOT ENOUGH!!!

 

...


Ain't that the truth.  But they don't pay him.  Except in mythical steak knives.

*The views and opinions expressed on this forum are purely my own. Any product claim, statistic, quote, or other representation about a product or service should be verified with the manufacturer, provider, or party.
Message 491 of 636 (2,690 Views)
Tutor

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?

Thanks for all the help provided in this post. It got me much further than I was able to on my own.

 

Moved from Boston (Verizon Fios) to San Antonio (AT&T UVerse)

 

Upgraded my router to EA6500 Smart Wi-Fi router so I could use their little wireless->lan devices to get internet to rooms without wireless and not run wires throughout the entire new house we bought.

 

Followed your instructions on the 2nd post and everything works.  It all worked initially just fine by running the linksys wizard as well.

 

Ok long story short, I can't get my actual ip address forwarded with either setup so far. Everything is working, internet/lan, etc. No matter how I forward the port 80 though I can't connect to my web server using my actual ip address (from phone on 3G as a real test).  I can access it typing in the local ip (I used range 192.168.100.1-so it was 192.168.100.52).  That connects fine.

 

I forwarded that to port 80 on the linksys to that ip in order to access it from outside my netowrk, but no luck. My setup is currently setup still using your instructions on the 2nd post down. What could I be doing wrong?  Thanks again for the help.

 

Jasems

Message 492 of 636 (2,632 Views)
Expert

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?

Check the firewall configuration on the Linksys carefully to make sure you're actually forwarding port 80.

Also check the Linksys status page to make sure the WAN IP address is the public IP address (make sure it hasn't picked up a 192.168 address from the RG instead).

Lastly, check your web server, make sure it is configured to answer requests to any IP address, not just the local LAN. If your web server has a firewall on it, you will also have to configure that for port 80 inbound requests.
Message 493 of 636 (2,612 Views)
Tutor

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?

I followed a tutorial to forward port 80 to the correct IP (for my specific router since it is new to me EA6500)

 

The linksys page does indeed have my internet IP as my "whatismyip" address lol

 

I will test the web server coming directly from the AT&T modem I think next. The windows firewall is off for the webserver so don't think thats it.  Maybe there is a webserver setting that I need to change for my new internet provider that I am forgetting? It worked before w/my old ISP and different router, so its kinda confusing me lol. Thanks for the help, anything else you can think of to try I will give it my best shot. Smiley Happy

 

Jasems

Message 494 of 636 (2,601 Views)
Tutor

Re: U-verse for BUSINESS? : 2Wire 3600HGV bridge mode? or another AT&T supported VDSL modem?

[ Edited ]

Added note from some tests. I did a port forwarding check tester from a google search.  It says my port 80 is open already.  I even disabled it from the linksys and it still says its open lol. Then just for the heck of it checked another random port and it was closed.  Went over to the linksys and opened it and nothing, website still says its closed. Seems like I still have something screwed up w/the routers. 

 

And one more test with even more confusing results.

So if I open and close 3389 (remote desktop) it shows on this port forwarding tester that it is open/closed when it is supposed to.

 

Now if I open a port for Minecraft 25565 it says closed no matter what.

 

Lastly port 80 shows as open even when not forwarded, yet I can't connect to me real IP address from even another computer on my network. The other compters on the network can connect to it with it's local ip address though... My brain is about to explode lol... 

 

 

EDIT>>> 

 

Ok so I unplugged the linksys, plugged directly in to the UVerse router. Forwarded the port 80 & it worked first try.  I can connect to my IP and domain name now from my phone on 3G.  Going to reset the linksys and try again using your tutorial and see if that helps. At least I know my server is setup correctly now and that it is indeed a router configuration error. Really need that linksys to be the main router though for parental controls and my wireless to lan boxes setup... Smiley Sad

Message 495 of 636 (2,599 Views)