Netgate SG-1000 microFirewall

Author Topic: UPNP fails when play  (Read 40874 times)

0 Members and 1 Guest are viewing this topic.

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
  • Karma: +7/-2348
    • View Profile
    • pfSense
Re: UPNP fails when play
« Reply #15 on: July 23, 2007, 02:49:07 pm »
I think you need to enable static-port for the XBOX 360 but this is just a guess.

If someone could show us the active states in use on the firewall when they are testing the xbox 360 connection that would be great (show states on the main index page).

Offline bgbearcatfan

  • Jr. Member
  • **
  • Posts: 88
  • Karma: +0/-0
  • GO UC!
    • View Profile
Re: UPNP fails when play
« Reply #16 on: July 23, 2007, 04:23:50 pm »
Sullrich, that's correct, atleast for my case anyways.

I did NOT even need to enable the upnp service.  After enabling static-port, everything functioned correctly.  I will post my active states when i get home.
/Brian
/2.0.1-RELEASE
built on Mon Dec 12 18:24:17 EST 2011

Offline sullrich

  • Hero Member
  • *****
  • Posts: 5110
  • Karma: +7/-2348
    • View Profile
    • pfSense
Re: UPNP fails when play
« Reply #17 on: July 23, 2007, 04:58:46 pm »
Please post with static-port and non static port so we can see the difference.

Thanks!!

Offline hoby

  • Newbie
  • *
  • Posts: 7
  • Karma: +0/-0
    • View Profile
Re: UPNP fails when play
« Reply #18 on: July 23, 2007, 08:37:44 pm »
I just fixed the following.

- fixed clear button on upnp status page
- fixed start/stop/restart buttons on services status page
- fixed so miniupnpd will correctly start at boot
- fixed when restarting service that previous redirect rules are cleared out

I will look at the open vs strict nat issue probably Wednesday morning. I'm really not sure why its doing this and can't guarantee I can fix it.

Your work and response is very much appreciated!  I am available for further testing if needed.  Thanks!

Offline rsw686

  • Sr. Member
  • ****
  • Posts: 520
  • Karma: +0/-0
    • View Profile
    • The Reptile File
Re: UPNP fails when play
« Reply #19 on: July 25, 2007, 09:04:10 am »
I just tested the xbox 360 multiple times, it reported open every time. I plugged the xbox 360 in, turned it on, hit test internet connection and it worked, repeated the test a few times. I turned it off and back on, tested and it reported open as well.

upnp status page

 3074      udp      10.10.1.144      Xbox (10.10.1.144:3074) 3074 UDP

miniupnpd debug output

miniupnpd[97878]: SSDP M-SEARCH from 10.10.1.144:22570 ST: urn:schemas-upnp-org:service:WANIPConnection:1
miniupnpd[97878]: SSDP M-SEARCH from 10.10.1.144:28615 ST: urn:schemas-upnp-org:service:WANPPPConnection:1
miniupnpd[97878]: HTTP connection from 10.10.1.144:23807
miniupnpd[97878]: HTTP REQUEST : GET /rootDesc.xml (HTTP/1.1)
miniupnpd[97878]: HTTP connection from 10.10.1.144:26428
miniupnpd[97878]: HTTP REQUEST : POST /ctl/IPConn (HTTP/1.1)
miniupnpd[97878]: SOAPAction: urn:schemas-upnp-org:service:WANIPConnection:1#GetStatusInfo
miniupnpd[97878]: HTTP connection from 10.10.1.144:17425
miniupnpd[97878]: HTTP REQUEST : POST /ctl/IPConn (HTTP/1.1)
miniupnpd[97878]: SOAPAction: urn:schemas-upnp-org:service:WANIPConnection:1#AddPortMapping
miniupnpd[97878]: AddPortMapping: external port 3074 to 10.10.1.144:3074 protocol UDP for: Xbox (10.10.1.144:3074) 3074 UDP
miniupnpd[97878]: no permission rule matched : accept by default (n_perms=0)
miniupnpd[97878]: redirecting port 3074 to 10.10.1.144:3074 protocol UDP for: Xbox (10.10.1.144:3074) 3074 UDP
miniupnpd[97878]: creating pass rule to 10.10.1.144:3074 protocol UDP for: Xbox (10.10.1.144:3074) 3074 UDP

However when retesting it keeps mapping additional ports. It checks the first port 3074 and when its already mapped, it randomly picks another port to use. Even if the 3074 was mapped to itself before. Looking at the miniupnpd debug output xbox 360 never tries deletes the ports it maps. Looks like they rely on the router to cleanup after it.

I'll have to look at the upnp docs, I think there is a way to specify how long the mapping lasts for. If there is it could be added to miniupnpd. The workaround is when you have a long list of mapped ports just hit clear on the upnp status page. Microsoft should fix the crap upnp implementation on the xbox.
« Last Edit: July 25, 2007, 09:15:47 am by rsw686 »

Offline jeroen234

  • Sr. Member
  • ****
  • Posts: 505
  • Karma: +1/-0
    • View Profile
Re: UPNP fails when play
« Reply #20 on: July 26, 2007, 12:28:06 am »
Microsoft should fix the crap upnp implementation on the xbox.

shame that they never fix things before shipping there crap around the world

Offline forum

  • Jr. Member
  • **
  • Posts: 84
  • Karma: +0/-0
    • View Profile
Re: UPNP fails when play
« Reply #21 on: July 30, 2007, 05:40:38 pm »
ok i will bring my pfsense back to work and test it but i still wonder why it was working excelent in the autumn ?? if you saying it work now but that it,s is xbox its fail on ? i is sitting in most cases on my 360 12-13 houer per day but the wheter in this contry is rain all the summer is raining away. but i can test it to and see if i got some new things. what are the newest verison of pfsense and where do i get it is it still on the live cd ??

Offline cmb

  • Hero Member
  • *****
  • Posts: 11230
  • Karma: +891/-7
    • View Profile
    • Chris Buechler
Re: UPNP fails when play
« Reply #22 on: July 30, 2007, 07:04:09 pm »

Offline forum

  • Jr. Member
  • **
  • Posts: 84
  • Karma: +0/-0
    • View Profile
Re: UPNP fails when play
« Reply #23 on: July 31, 2007, 12:40:28 pm »
hi agin can,t we just build a biger list like the system log ?? it is after 5 times its stop working and the upnp just list 5 and son after that it,s strict.
« Last Edit: August 01, 2007, 03:43:47 am by forum »

Offline rsw686

  • Sr. Member
  • ****
  • Posts: 520
  • Karma: +0/-0
    • View Profile
    • The Reptile File
Re: UPNP fails when play
« Reply #24 on: August 01, 2007, 10:03:09 pm »
When it stops working are the previous ports still mapped on the UPnP status page? If so does hitting clear on the UPnP status page allow the xbox 360 to connect as open nat again?

Offline zboll

  • Jr. Member
  • **
  • Posts: 36
  • Karma: +0/-0
    • View Profile
Re: UPNP fails when play
« Reply #25 on: August 02, 2007, 12:41:37 am »
I have an issue too with my xbox360 too when using pfsense.  My xbox360 would report the NAT as open which is good, but I would have to try connecting like 20 times to get into a game when playing COD3.  Because of that, I changed my router over to a buffalo router with DD-WRT installed, and now I am able to connect to almost every game I try.  Is this the problem you guys where having in this post?

my pfsense router was a P2 400 MHz with 386 MB ram.  I thought maybe it was too slow and that was causing me problems with connecting to games.  I just got a P4 2.4 GHz machine with 512 MB ram, I have been thinking about going back to pfsense with that, what do you guys think, do you think upnp will work?  Would the faster computer make any difference?

thanks,
Zack

Offline LawnMowerGuy1

  • Jr. Member
  • **
  • Posts: 37
  • Karma: +0/-0
    • View Profile
Re: UPNP fails when play
« Reply #26 on: August 02, 2007, 02:52:56 am »
UPnP maintainer,

When I was working with the UPnP implementation on embedded linksys devices I noticed they had many hacks in place (mostly for msn messenger). I also noticed that the xbox does not send a UPnP release.

Maybe you could build something into the daemon such as this pseudo-code:

if (requestingUPnPdesc = Xbox (192.168.x.x)) {
   
    if (valid rule already exists) {
        send success message to the xbox so it does not try to map another port;
    }
    else {
        map the port;
    }
}
else {
    continue;
}

Offline rsw686

  • Sr. Member
  • ****
  • Posts: 520
  • Karma: +0/-0
    • View Profile
    • The Reptile File
Re: UPNP fails when play
« Reply #27 on: August 02, 2007, 07:52:12 am »
LawnMowerGuy1,

I will look at the code and see how difficult it would be to implement something like that.

I'm away for the week so I don't have an xbox in front of me. If somebody could get me the miniupnpd debug output when xbox tries to connect and maps another port that would be great. I can't remember how it checks to see if the port is already mapped.

Using one of the later snapshots you can put miniupnpd into debug mode by running the following on the console. Make sure to stop miniupnpd using the status -> services page.

/usr/local/sbin/miniupnpd -f /var/etc/miniupnpd.conf

Afterwards you can restart the service on the status -> services page to get out of debug mode.

I just hate implementing hacks to get microsoft's crap to work. It really bothers me that they can't follow the UPnP specs like everybody else.
« Last Edit: August 02, 2007, 08:06:28 am by rsw686 »

Offline forum

  • Jr. Member
  • **
  • Posts: 84
  • Karma: +0/-0
    • View Profile
Re: UPNP fails when play
« Reply #28 on: August 02, 2007, 08:12:09 am »
no zboll your pfsense is working well it,s the xbox and the upnp thats not working together. when i hade d-link gming router it,s working well to. but i like the pfsense better. in d-link i find a gamefuel page where all of this ports and other things that was reallated to games was. why can,t we build one page like this in the pfsense ?

Offline GruensFroeschli

  • Little Green Frog
  • Global Moderator
  • Hero Member
  • *****
  • Posts: 5420
  • Karma: +86/-3
  • No i will not fix your computer!
    • View Profile
Re: UPNP fails when play
« Reply #29 on: August 02, 2007, 09:37:15 am »
We do what we must, because we can.

Asking questions the smart way: http://www.catb.org/esr/faqs/smart-questions.html