Home Network Community > Deco > Port Forwarding Broken
< Deco

Port Forwarding Broken

Port Forwarding Broken

Port Forwarding Broken
Port Forwarding Broken
3 weeks ago
Tags: #Port Forwarding
Model: Deco BE11000  
Hardware Version:
Firmware Version: 1.1.7 Build 20250324 Rel. 32980

Not sure what changed in the backend, but a couple of days ago, I noticed all of my server services were no longer accessible outside of the network.

 

I looked at the port forwarding options and they all still made sense regarding external and internal ports, but I noticed on the main port forwarding screen that the summary has the wrong ports, I assume it should be showing local ip of the device and internal port of that device, but it is showing local IP with external port, so maybe the internal port is just being disregarded?

 

The external ports are being exposed and I confirmed that with an open port checker, but it doesn't seem to be routing to the internal port correctly.

 

Anyone else experience this recently? Like I said it was working for months and then all of a sudden it wasn't with no changes on my side.

  1      
 
  1      
 
#1
Options
3 Reply
Re:Port Forwarding Broken
3 weeks ago
I also noticed that my wireguard VPN server hosted on the deco seems to be broken as well, around the same time. Client logs are saying handshake is failing.
  0  
  0  
#2
Options
Re:Port Forwarding Broken
3 weeks ago

  @Wildwood952 

Hi, thank you very much for the feedback.

If you checked the displayed IP address on https://whatismyipaddress.com/, is it the same as the IPV4 address under Deco App>More>Internet Connection>IPV4?

-If the IPV4 address on the Deco BE11000 is a public IP, the WireGuard VPN server doesn't need extra port forwarding for the remote VPN clients. I think there have probably been some changes on the ISP side in the past few days, for example, assigning a new private IP to the Deco.

 

By the way, it is right to list the external port under NAT Forwarding, as the internal port is fixed and decided by the local server itself, and the external port is flexible and reserved on the router for remote access.

 

Thanks a lot.

Best regards.

Check What's Currently Going on With DecoDeco X50_V1_1.8.0 Significantly Expanded the Client Connection Details and Added Channel SelectionDeco X50/X55_V1.3_1.3.1 Introduced Channel Selection, WiFi Access Control and WireGuard VPNDeco BE65_V2_1.2.10 New Firmware with Enhanced Stability & Interference ResistanceDeco BE75 1.1.0 Added WireGuard VPN, Manual Channel Selection and More Try to leave a Message if urgent help is required.
  0  
  0  
#3
Options
Re:Port Forwarding Broken
3 weeks ago - last edited 3 weeks ago

Yes the Internet connection IP is my public IP. My ATT gateway is in passthrough mode so maybe it was updated without me knowing and that broke something?

 

I will have to investigate further, but it is just strange that the internet is still working (deco app for instance). When I tailscale into the network, all of my server's services are accessible, but none of my port forwarded services work without the tailscale VPN, when in the past they worked on no VPN, deco wireguard VPN, or the tailscale VPN.

 

What is more confusing is that I have DNS entries for my various services and those don't work remote, but do work locally (when on tailscale VPN as I am currently away from home) so I don't think it is a DNS issue necessarily.

 

Understood about the internal IP with external port, was just a bit confusing as it is displaying an address that isn't necessarily accessible, namely if internal and external ports are different. Maybe there is a better way to display it, such as <local ip>:<internal port> ---> <internet ip or ddns>:<external port>

  1  
  1  
#4
Options

Information

Helpful: 1

Views: 138

Replies: 3

Tags

Port Forwarding
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.