This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Port forwarding

i am having trouble with setting up port forwarding for the game The Division, the ubisoft website says the following ports should be forwarded:

UDP: 33000 to 33499
TCP: 27015, 51000, 55000 to 55999, 56000 to 56999

  

the screenshot above are the rules i have setup, firstly are these correct? if they are the game will still not work.

I'm 99.999% sure its a firewall issue as the game worked before i stated to use the UTM as a gateway and was only using it for a proxy, i've checked the firewall log whilst trying the game and nothing is being blocked between my pc and the internet and the internet and my pc.

i've even tried allowing all ports through to my pc and that doesn't work. i have read the RULZ but as ive said the logs don't seem to point to anything and i think ive created the NAT correctly



This thread was automatically locked due to age.
Parents
  • fellow division player here:

    not using any other rule than "gaming pc" any -> "any ipv4 / internet ipv4", not doing anything with DNAT for Division. 

    ---

    Sophos UTM 9.3 Certified Engineer

  • tried your suggestion, i guessed that it was a firewall rule, that didn't work, one question, would any of my existing rules affect it in anyway?

  • Chris, have you followed #1 in Rulz?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • i have already disabled Intrusion Prevention and Application Control and the problem still exits, as for logs there doesn't seem to be anything required being blocked although i didn notice something blocked from 192.168.0.1 (Isp Router) and 192.168.0.2 (utm wan port) which i created the firewall rule below for which also didn't help.

     

  • Chris, please read #1 thoroughly.  It's not Snort that causes this kind of problem.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • i have checked everything in the rulz 1, 3, 3.1 and 5, nothing in intrusion protection is enabled, advanced threat protection is zero all the devices on the lan have the gateway the lan ip of the UTM set by DHCP and i have created masquerading rules for each interface and the NAT rules none of the ports are changed in the rules.

     

    As i said in an earlier post i have disabled application control and intrusion protection and ensured that both global and anti-portscan are disabled and the firewall logs don't display anything the looks relevant (i may be wrong but the ports mentioned by ubisoft are, according to the firewall logs, forwarded as required.

     

    below is a screenshot of the game and the firewall log and the webfiltering log during the game.

  • try that DSL Modem with the sophos and remove the Provider issued router that sits in front of the sophos.
    My sophos does the dial in via pppoe and i have zero problems with the division.

     

    One more thing to try:

    i noticed you are using the "web protection", turn that off and test again with the division. I am not using that. It only causes problems like these. (i am not saying dont use it at all but see if its the source of the problem) (you can put in exceptions for the web protection later if this is the issue)

    ---

    Sophos UTM 9.3 Certified Engineer

  • i tried that over the weekend and i use sky in the UK and they use MER authentication and utm doesn't seem to connect even when using pppoe and the username and password wireshark says the sky router is passing via mer, i was using an asus router with the same username and password, the pppoe log only showed 

    2017:11:12-11:42:10 utm pppoe-sh: DSL connection time shorter than 60 seconds (35 sec): Error? - wait 5 seconds
    2017:11:12-11:42:15 utm pppd-pppoe[12832]: Plugin rp-pppoe.so loaded.
    2017:11:12-11:42:15 utm pppd-pppoe[12832]: RP-PPPoE plugin version 3.8p compiled against pppd 2.4.7
    2017:11:12-11:42:15 utm pppd-pppoe[12832]: pppd 2.4.7 started by root, uid 0
    2017:11:12-11:42:15 utm pppd-pppoe[12832]: Send PPPOE Discovery V1T1 PADI session 0x0 length 12
    2017:11:12-11:42:15 utm pppd-pppoe[12832]:  dst ff:ff:ff:ff:ff:ff  src 70:50:af:56:c6:5a
    2017:11:12-11:42:15 utm pppd-pppoe[12832]:  [service-name] [host-uniq  20 32 00 00]
    2017:11:12-11:42:20 utm pppd-pppoe[12832]: Send PPPOE Discovery V1T1 PADI session 0x0 length 12
    2017:11:12-11:42:20 utm pppd-pppoe[12832]:  dst ff:ff:ff:ff:ff:ff  src 70:50:af:56:c6:5a
    2017:11:12-11:42:20 utm pppd-pppoe[12832]:  [service-name] [host-uniq  20 32 00 00]
    2017:11:12-11:42:28 utm pppd-pppoe[12832]: error receiving pppoe packet: Network is down
    2017:11:12-11:42:30 utm pppd-pppoe[12832]: Send PPPOE Discovery V1T1 PADI session 0x0 length 12
    2017:11:12-11:42:30 utm pppd-pppoe[12832]:  dst ff:ff:ff:ff:ff:ff  src 70:50:af:56:c6:5a
    2017:11:12-11:42:30 utm pppd-pppoe[12832]:  [service-name] [host-uniq  20 32 00 00]
    2017:11:12-11:42:30 utm pppd-pppoe[12832]: error sending pppoe packet: No such device or address
    2017:11:12-11:42:50 utm pppd-pppoe[12832]: Timeout waiting for PADO packets
    2017:11:12-11:42:50 utm pppd-pppoe[12832]: Unable to complete PPPoE Discovery
    2017:11:12-11:42:50 utm pppd-pppoe[12832]: Exit.
  • what about trying to deactivate Web Protection and go out directly?

    ---

    Sophos UTM 9.3 Certified Engineer

  • i have tried disabling it and no difference, it works with that enabled if i use the utm as a proxy server its only if i use the utm as a default gateway.

  • I've managed to get the game working, 

     

    i needed to create a dnat and snat rules

     

    it was only because i had a problem with plex and had to create a snat rule to get that working thai i decided to try the saame for the division

  • if you already had masquerading and firewall rules in place, these rule don't make any sense to have fixed your problem, - at all -

    ---

    Sophos UTM 9.3 Certified Engineer

Reply Children
No Data