Netgear Dg843

[james.wilson]

id avoid. You break that server and your gonna have major issues. The gw info from the win 2k3 server will probably be the server itself so wont help. If you do an ipconfig /all it will show (assuming it has 2 netwrk cards) the address's of both. This will give the ip address of the router. But as above id get it to sort it.

[Adi]

I'm back there tomorrow, i'm going to ask him to get the IT man in, as you say if their server goes tits up after ive dabbled with it, i'll end up in a cage laying eggs.

[Adi]

had a look in the server at routing, port 80 is being used by a few things was going to use 8080 i also need to forward to 37777.

if i add a port it asks for an incoming port, private address and outgoing port.

Ive got the private address, do all 3 boxes have to be filled in?

It also only states TCP but is port 80 not HTTP?

[Cubit]

had a look in the server at routing, port 80 is being used by a few things was going to use 8080 i also need to forward to 37777.

if i add a port it asks for an incoming port, private address and outgoing port.

Ive got the private address, do all 3 boxes have to be filled in?

It also only states TCP but is port 80 not HTTP?

You need to check the settings of the router for web access and remote management. If it is using port 80, select alternative for your needs.

Re Port forwarding, yes, you'll need all three, here's a screen grab for an example.

[Adi]

so ingoing and outgoing can be the same number?

[Cubit]

so ingoing and outgoing can be the same number?

Yes, You are telling the router to let data coming in on a port to go through the NAT and out on a port. Can be same but can be different.

Remember, The NAT is blocking traffic, port forwarding (and any associated rules) is simply telling it to allow specific/certain traffic through.

Much safer than DMZ but not as safe as VPN. Daft thing is, VPN can be much easier to set up.

[arfur mo]

How do you come to that conclusion?

My router here has it's gateway address changed. Can anyone guess what it is? No.

I'll narrow it down. It's the 3rd octet. So, any of 254 options.

On the current project of networking many sites we are having to change the Gateway to a unique number on each one - to avoid conflicts.

there are many ways some IT guys try to protect or prevent illigal access, things like WiFi enabled phones downloading pirate music or a happy chappy downloading porn to their own laptops are some of the reason, as any come backs its the firms problem who owns the ip. others companies just plain don't like anyone using their facility especially without asking, even if it costs them nothing and for totally innocent uses.

so without going into guessing every possibility and devious routine or trick, MAC filtering is a very common low level method, so did did i not say "have a look at the routers config if the company allowed it"

i'd now respectfully to everyone suggest the very best advice is do as i would do - back away, at the moment your risking the equivalent of drilling into a boiler house without checking for hidden pipes first.

by faffing about in the dark you may well take down the the server and/or the security and expose this company to illigal or malicouse actions these precautions are in pace to prevent, and/or causing them massive harm, just guess who gets the bad name (if your not sued)?

i see no worries putting the DVR in the DMZ if it is not windows based O/S, it can't host anything nasty, most are Linux and o/s is in rom very hard or be 'zombied' and if it is 'cracked' what use other than to look at the images?

so a very low level of risk if any, and way below that of touching the IT engineers settings imho.

Arfur

[Cubit]

there are many ways some IT guys try to protect or prevent illigal access, things like WiFi enabled phones downloading pirate music or a happy chappy downloading porn to their own laptops are some of the reason, as any come backs its the firms problem who owns the ip. others companies just plain don't like anyone using their facility especially without asking, even if it costs them nothing and for totally innocent uses.

so without going into guessing every possibility and devious routine or trick, MAC filtering is a very common low level method, so did did i not say "have a look at the routers config if the company allowed it"

i'd now respectfully to everyone suggest the very best advice is do as i would do - back away, at the moment your risking the equivilant of drilling into a boiler house without checking for hidden pipes first.

by faffing about in the dark you may well take down the the server and/or the security and expose this company to illigal or malicouse actions these precautions are in pace to prevent, and/or causing them massive harm, just guess who gets the bad name (if your not sued)?

Arfur

What's any of that got to do with my comment or subsequent ones?

[SystemQ]

so ingoing and outgoing can be the same number?

Attached is a set up tip for the netgear router.

It contains an example for DMZ and port forwarding.

When fault finding DVR Internet connections, it's a good option to see if it works with DMZ as it proves that everything will work if port forwarding is set up correctly as DMZ will forward all ports to the IP address you specify.

When you know it works with DMZ, set up the port forwarding rules and simply disable DMZ unless you need it for further testing.

Paul.

TechnicalTip-0058.pdf