Netgear R7800 Nighthawk X4s Ac2600 Smart Wifi Router User Manual
Have a look at the manual Netgear R7800 Nighthawk X4s Ac2600 Smart Wifi Router User Manual online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 137 Netgear manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
12 Customize Internet Traffic Rules for Ports You can use port forwarding and port triggering to set up rules for Internet traffic.You need networking knowledge to set up these features. This chapter includes the following sections: •Port Forwarding to a Local Server on page 152 •Port Triggering on page 156 151
Port Forwarding to a Local Server If your home network includes a server, you can allow certain types of incoming traffic to reach the server. For example, you might want to make a local web server, FTP server, or game server visible and available to the Internet. The router can forward incoming traffic with specific protocols to computers on your local network.You can specify the servers for applications and you can also specify a default DMZ server to which the router forwards all other incoming protocols. Set Up Port Forwarding to a Local Server To forward specific incoming protocols: 1.Decide which type of service, application, or game you want to provide. 2.Find the local IP address of the computer on your network that will provide the service. You can usually find this information by contacting the publisher of the application or user groups or news groups. The server computer must always use the same IP address. 3.Assign the server computer a reserved IP address. See Manage Reserved LAN IP Addresses on page 64. 4.Launch a web browser from a computer or WiFi device that is connected to the network. 5.Enter http://www.routerlogin.net. A login window opens. 6.Enter the router user name and password. The user name is admin.The default password is password.The user name and password are case-sensitive. The BASIC Home page displays. 7.Select ADVANCED > Advanced Setup > Port Forwarding/Port Triggering. 8.Leave the Port Forwarding radio button selected as the service type. 9.From the Service Name menu, select the service name. Customize Internet Traffic Rules for Ports 152 Nighthawk X4S AC2600 Smart WiFi Router
If the service that you want to add is not in the menu, create a custom service. See Add a Custom Port Forwarding Service on page 153. 10.In the Server IP Address field, enter the IP address of the computer that will provide the service. 11.Click the Add button. The service displays in the menu. Add a Custom Port Forwarding Service To add a custom service: 1.Find out which port number or range of numbers the application uses. You can usually find this information by contacting the publisher of the application or user groups or news groups. 2.Launch a web browser from a computer or WiFi device that is connected to the network. 3.Enter http://www.routerlogin.net. A login window opens. 4.Enter the router user name and password. The user name is admin.The default password is password.The user name and password are case-sensitive. The BASIC Home page displays. 5.Select ADVANCED > Advanced Setup > Port Forwarding/Port Triggering. The Port Forwarding/Port Triggering page displays. 6.Leave the Port Forwarding radio button selected as the service type. 7.Click the Add Custom Service button. 8.In the Service Name field, enter a descriptive name. Customize Internet Traffic Rules for Ports 153 Nighthawk X4S AC2600 Smart WiFi Router
9.From the Protocol menu, select the protocol. If you are unsure, select TCP/UDP. 10.In the External port range field, enter the port numbers. 11.Specify the internal ports by one of these methods: •Leave the Use the same port range for Internal port check box selected. •Type the port numbers in the Internal Port Range field. You can enter a port range and fixed ports in one rule. For example, external (30-50, 78, 100-102), internal (40-60, 99, 200-202).With this rule, external ports 30-50 are forwarded to internal ports 40-60. 12.In the Internal IP address field, type the IP address or select the radio button for an attached device listed in the table. 13.Click the Apply button. The service is now in the list on the Port Forwarding/Port Triggering page. Edit a Port Forwarding Service To edit a port forwarding entry: 1.Launch a web browser from a computer or WiFi device that is connected to the network. 2.Enter http://www.routerlogin.net. A login window opens. 3.Enter the router user name and password. The user name is admin.The default password is password.The user name and password are case-sensitive. The BASIC Home page displays. 4.Select ADVANCED > Advanced Setup > Port Forwarding/Port Triggering. The Port Forwarding/Port Triggering page displays. 5.Leave the Port Forwarding radio button selected as the service type. 6.In the table, select the radio button next to the service name. 7.Click the Edit Service button. The Ports - Custom Services page displays. 8.Change the settings as needed. 9.Click the Apply button. Your settings are saved. Customize Internet Traffic Rules for Ports 154 Nighthawk X4S AC2600 Smart WiFi Router
Delete a Port Forwarding Entry To delete a port forwarding entry: 1.Launch a web browser from a computer or WiFi device that is connected to the network. 2.Enter http://www.routerlogin.net. A login window opens. 3.Enter therouter user name and password. The user name is admin.The default password is password.The user name and password are case-sensitive. The BASIC Home page displays. 4.Select ADVANCED > Advanced Setup > Port Forwarding/Port Triggering. The Port Forwarding/Port Triggering page displays. 5.Leave the Port Forwarding radio button selected. 6.In the table, select the radio button next to the service name. 7.Click the Delete Service button. The service is deleted. Application Example: Make a Local Web Server Public If you host a web server on your local network, you can use port forwarding to allow web requests from anyone on the Internet to reach your web server. To make a local web server public: 1.Assign your web server either a fixed IP address or a dynamic IP address using DHCP address reservation. In this example, your router always gives your web server an IP address of 192.168.1.33. 2.On the Port Forwarding/Port Triggering page, configure the router to forward the HTTP service to the local address of your web server at 192.168.1.33. HTTP (port 80) is the standard protocol for web servers. 3.(Optional) Register a host name with a Dynamic DNS service and specify that name on the Dynamic DNS page of the router. Dynamic DNS makes it much easier to access a server from the Internet because you can type the name in the Internet browser. Otherwise, you must know the IP address that the ISP assigned, which typically changes. Customize Internet Traffic Rules for Ports 155 Nighthawk X4S AC2600 Smart WiFi Router
How the Router Implements the Port Forwarding Rule The following sequence shows the effects of a port forwarding rule: 1.When you type the URL www.example.com in your browser, the browser sends a web page request message with the following destination information: •Destination address.The IP address of www.example.com, which is the address of your router. •Destination port number. 80, which is the standard port number for a web server process. 2.Your router receives the message and finds your port forwarding rule for incoming port 80 traffic. 3.The router changes the destination in the message to IP address 192.168.1.123 and sends the message to that computer. 4.Your web server at IP address 192.168.1.123 receives the request and sends a reply message to your router. 5.Your router performs Network Address Translation (NAT) on the source IP address and sends the reply through the Internet to the computer or WiFi device that sent the web page request. Port Triggering Port triggering is a dynamic extension of port forwarding that is useful in these cases: •An application must use port forwarding to more than one local computer (but not simultaneously). •An application must open incoming ports that are different from the outgoing port. With port triggering, the router monitors traffic to the Internet from an outbound “trigger” port that you specify. For outbound traffic from that port, the router saves the IP address of the computer that sent the traffic.The router temporarily opens the incoming port or ports that you specify in your rule and forwards that incoming traffic to that destination. Port forwarding creates a static mapping of a port number or range of ports to a single local computer. Port triggering can dynamically open ports to any computer when needed and close the ports when they are no longer needed. If you use applications such as multiplayer gaming, peer-to-peer connections, real-time communications such as instant messaging, or remote assistance (a feature in Windows XP), enable Universal Plug and Play (UPnP). See Improve Network Connections With Universal Plug and Play on page 92. Note Add a Port Triggering Service To add a port triggering service: 1.Launch a web browser from a computer or WiFi device that is connected to the network. 2.Enter http://www.routerlogin.net. A login window opens. Customize Internet Traffic Rules for Ports 156 Nighthawk X4S AC2600 Smart WiFi Router
3.Enter the router user name and password. The user name is admin.The default password is password.The user name and password are case-sensitive. The BASIC Home page displays. 4.Select ADVANCED > Advanced Setup > Port Forwarding/Port Triggering. The Port Forwarding/Port Triggering page displays. 5.Select the Port Triggering radio button. 6.Click the Add Service button. 7.In the Service Name field, type a descriptive service name. 8.From the Service User menu, select a user option: •Any (the default) allows any computer on the Internet to use this service. •Single address restricts the service to a particular computer. 9.From the Service Type menu, select TCP or UDP or TCP/UDP (both). If you are not sure, select TCP/UDP. Customize Internet Traffic Rules for Ports 157 Nighthawk X4S AC2600 Smart WiFi Router
10.In the Triggering Port field, enter the number of the outbound traffic port that will open the inbound ports. 11.In the Connection Type, Starting Port, and Ending Port fields, enter the inbound connection information. 12.Click the Apply button. The service is now in the Portmap Table.You must enable port triggering before the router uses port triggering. See Enable Port Triggering on page 158. Enable Port Triggering To enable port triggering: 1.Launch a web browser from a computer or WiFi device that is connected to the network. 2.Enter http://www.routerlogin.net. A login window opens. 3.Enter the router user name and password. The user name is admin.The default password is password.The user name and password are case-sensitive. The BASIC Home page displays. 4.Select ADVANCED > Advanced Setup > Port Forwarding/Port Triggering. The Port Forwarding/Port Triggering page displays. 5.Select the Port Triggering radio button. 6.Clear the Disable Port Triggering check box. If this check box is selected, the router does not use port triggering even if you specified port triggering settings. 7.In the Port Triggering Timeout field, enter a value up to 9999 minutes. Customize Internet Traffic Rules for Ports 158 Nighthawk X4S AC2600 Smart WiFi Router
This value controls how long the inbound ports stay open when the router detects no activity.This value is required because the router cannot detect when the application terminates. 8.Click the Apply button. Your settings are saved. Application Example: Port Triggering for Internet Relay Chat Some application servers, such as FTP and IRC servers, send replies to multiple port numbers. Using port triggering, you can tell the router to open more incoming ports when a particular outgoing port starts a session. An example is Internet Relay Chat (IRC).Your computer connects to an IRC server at destination port 6667.The IRC server not only responds to your originating source port but also sends an “identify” message to your computer on port 113. Using port triggering, you can tell the router, “When you initiate a session with destination port 6667, you must also allow incoming traffic on port 113 to reach the originating computer.”The following sequence shows the effects of this port triggering rule: 1.You open an IRC client program to start a chat session on your computer. 2.Your IRC client composes a request message to an IRC server using a destination port number of 6667, the standard port number for an IRC server process.Your computer then sends this request message to your router. 3.Your router creates an entry in its internal session table describing this communication session between your computer and the IRC server.Your router stores the original information, performs Network Address Translation (NAT) on the source address and port, and sends this request message through the Internet to the IRC server. 4.Noting your port triggering rule and observing the destination port number of 6667, your router creates another session entry to send any incoming port 113 traffic to your computer. 5.The IRC server sends a return message to your router using the NAT-assigned source port (for example, port 33333) as the destination port and sends an “identify” message to your router with destination port 113. 6.When your router receives the incoming message to destination port 33333, it checks its session table to see if a session is active for port number 33333. Finding an active session, the router restores the original address information replaced by NAT and sends this reply message to your computer. 7.When your router receives the incoming message to destination port 113, it checks its session table and finds an active session for port 113 associated with your computer.The router replaces the message’s destination IP address with your computer’s IP address and forwards the message to your computer. 8.When you finish your chat session, your router eventually senses a period of inactivity in the communications. The router then removes the session information from its session table and incoming traffic is no longer accepted on port numbers 33333 or 113. Customize Internet Traffic Rules for Ports 159 Nighthawk X4S AC2600 Smart WiFi Router
13 Use VPN to Access Your Network You can use OpenVPN software to remotely access your router using virtual private networking (VPN).This chapter explains how to set up and use VPN access. The chapter includes the following sections: •Set Up a VPN Connection on page 161 •Specify VPN Service in the Router on page 161 •Install OpenVPN Software on page 162 •Use a VPN Tunnel on Your Windows Computer on page 167 •Use VPN to Access the Router’s USB Device and Media on page 169 •Use a VPN Tunnel to Access Your Internet Service at Home on page 171 •Change VPN Pass-Through Settings on page 171 160