What is Digg?22 Comments
- estvir, on 10/12/2007, -0/+5I'm not really expecting too many people to try and hack my 360 though you certainly do have a point.
Does having a DMZ interfere with other port forwarding ? If so, it might be the cause of my recent torrent problems though before my new PC torrents where a-okay with a DMZ on my 360 - I think I need to do more research on DMZ (I feel so bad as I generally tout my 'security' quite a bit).
I have disgraced myself. /falls on sword - LethalGeek, on 10/12/2007, -1/+6I did this when I got my 360 way back, worked like a charm.
DMZ was being taken up by my PC. No I don't care how risky that is, shush. - clipper453, on 10/12/2007, -0/+4That is another solution, but does setting up a DMZ for your 360 gain you any benefits over just forwarding ports 88 and 3074? Also, what if you have other ports forwarded to other computers on your network? Would the DMZ interfere with that?
If ports 88 and 3074 are the only ones that are needed, why take this risk of opening all ports to the 360? - estvir, on 10/12/2007, -3/+6Or, if your router supports having a DMZ do so for your 360.
- nodde, on 11/05/2007, -0/+2Theres some useful info on this site: http://www.noddegamra.co.uk/problems-with-xbox-360 ...
- trunkster, on 10/12/2007, -0/+2Took them half a year to finally tell people that? I did this right away to get my connection to run smoothly.
- Rebulator, on 10/12/2007, -0/+1quite useful for those who have connection issues with the NAT.
- uglysmurf, on 10/12/2007, -1/+2what did i say wrong 5 months ago?
http://digg.com/gaming_news/Xbox_Live_connection_problems_Here_s_a_tip_(port_forwarding) - Rumjux, on 08/31/2008, -0/+1its more than good, it grrrreat!
- Chris4, on 10/02/2008, -0/+1Everything.
- grrreat, on 10/12/2007, -0/+1I guess someone finally decided it would be something everyone would think is grrreat...
- forbes50000, on 10/25/2007, -0/+1can anyone tell me a step by step way t do this as i am not as technically gifted as most of you sound? haha
- tokyoturnip, on 10/12/2007, -2/+2I will start off by saying, I do have a 360, but have an original xbox. The original poster comment of "should forward port 88 and 3074" is incorrect. You only need to forward 3074UDP to your xbox IF you have a very strict router. If you know how to read a MS KB article it says that 88UDP 3074 TCP, and 3074UDP needs to be available. This is actually intended for people that have a STRICT firewall (A company firewall for example) that blocks these ports outbound. It does not say forward these ports to your device.
I will tell you from experience you only need to forward port 3074UDP to your xbox, why? because your dipsh*t friend has a router that that is too strict to let established connections back in router.
If anyone knows their ports, they will know that port88 is for Kerberos. Now why do you need to open port 88 to your xbox, so someone can login? No, it does not make sense. Trust me, you only need to open 3074Udp to your xbox, only if your router sucks, or freind's your sucks. - kodek, on 10/12/2007, -4/+4Having UPnP enabled is like not having the protection of the firewall in the first place.
- inactive, on 10/12/2007, -3/+3what?
- THEMACGOD, on 10/12/2007, -1/+1DMZ is the way to go... no impedimentia at all. :)
- Suroot, on 10/12/2007, -1/+1First off, let me say that my XBox live account has been working forever; just making sure that you know I'm not lying to you.
I am currently running a Cisco 2611 with reflexive access-lists on each interface allowing NOTHING inbound. However, I do allow everything outbound. (If you don't know what a reflexive ACL is go here:
http://www.cisco.com/en/US/products/ps6441/products_configuration_guide_chapter09186a0080716ebd.html)
Anyway, I have had absolutely no problems. I use a strange net address on the inside, but other than that, nothing is out of the ordinary.
I was using a Linksys up until I bought my new NM-1e for the 2600 then replaced the Linksys with that. Anyway, I never had any problems with the Linksys either. I did have a D-Link that was a bit older, and I needed to do as stated above and setup the DMZ for the XBox. You should always steer away from using things like DMZs and port forwarding unless you ABSOLUTELY need too!
Remember people at that point you are statically assigning the outside interface and port (or specific IP for people using routers/pixen) to an inside IP Addresse and port. (For those people not familiar with how NAT works look below) So once you port forward to or create a DMZ, everyone in the world can get to that port(s) on your local box. DMZs are especially poor because at that point your entire box is open to the world. And a SYN packet coming inward to your IP Address will then be forwarded directly to that box regardless if the port is open or not. Thus it is like everyone in the world is on a network with your box on the DMZ.
NAT:
The packet will arrive at the router with a source ip address (whatever) a destination address (your global "internet" ip address), and a destination port.
DMZ: The destination address is removed and a new ip address (your local "inside" ip address). Then the packet is forwarded out the interface where that address can be found (routed). On the way back out the source address (your local "inside" ip address) is removed and a new ip address (your global "internet" ip address) is placed in its place.
Port Forwarding: The rules are checked to see which static translation matches and which ever does it applys that rule. This process is the same but now we also take destination port out and put in the new (local port) in the packet. For the return traffic, we see the source port get "translated".
Do we see why this is bad? You should be careful when doing translations! Remember ANYONE can connect to it.
--------------------------------------------------------------------------------
[su]+[ ]?[r](u|oo)t[e]?
Yes I think I'm too white 'n nerdy! - Wannabenerd, on 12/18/2007, -0/+0You can also use the free BaUPnP to automate the port forwarding:
http://barracudaserver.com/products/tools/upnp/ - CaptainMcCrank, on 10/12/2007, -0/+0I think Live does use kerberos. I seem to remember something about this in a channel9.msdn.com video a while back.
- nathanstl, on 10/12/2007, -2/+0I do have some connection problems, but my NAT status is open. That eliminates this being my problem, right?
- nigel984, on 10/12/2007, -5/+0Really this is only for people with flakey UPNP on their routers though?
- xelloss, on 10/12/2007, -6/+1I just emailed a tech thing, haven't had any problems since.
Browsing Digg on your phone just got easier with our enhancements to the 
© Digg Inc. 2009
— Content created and posted by Digg users is