Solved

Port Forwarding check

Posted on 2009-04-05
6
1,119 Views
Last Modified: 2012-05-06
Hello Everyone.

My question is related to router port forwarding.

If I have a router that is "supposed" to be port forwarding certain TCP/UDP ports 6000,6100,9000,9001,30000-30031 forwarded from the WAN side to a fixed internal LAN Ip address 192.168.0.200, how can I  check that those ports are being forwarded properly?
The destination is a VoIP phone system and is not a PC.

I had an Idea that I could set up a Telnet server on a PC and put it on the destination address temporarily in place of the Voip System & set it to accept connections on the above ports.
Then go off site and manually telnet into the server on those ports, one at a time.
If I can do this, the ports must be forwarded correctly?
Maybe even do a file transfer to see if it works reliably?

Is there an easier way to do this?
Is there a program/tool that can do this type of testing?
0
Comment
Question by:Cruicky
6 Comments
 
LVL 42

Expert Comment

by:Davis McCarn
ID: 24073451
If the VOIP system answers phone calls and you can use it to place calls, the port forwarding is working. Have you tried that?
0
 

Author Comment

by:Cruicky
ID: 24073822
The phones work sometimes and not others. The conversation is one way only.
This is why i need to KNOW the ports are forwaded.

Thanks for the suggestion but it wasnt helpful on this occation

AC
0
 
LVL 10

Expert Comment

by:Kechka
ID: 24074692
0
What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 32

Expert Comment

by:Kamran Arshad
ID: 24075881
Hi,

For one-way-communication, please check the below link;

http://www.voip-info.org/wiki/view/One-way+Audio

For testing Port-Forwarding;

http://www.voipuser.org/port_forward_tester.html
0
 

Author Comment

by:Cruicky
ID: 24125405
Thank you for the "VoipUser.org" Port forward test tool. I have found that tool too but it requires the voipUser server side application to function and that appears to be always down. Unless its a Vista compatibility issue that I am not aware of. (of which there are many)

Had a look at the "voip-info.org" suggestions and while the testing various link segments is indeed a good process of elimination, it is hard to do this when its the internet infrastructure that resides between the 2 sites. Not many ISP's are willing to let you set up a packet sniffer (wireshark) inside their point of prescence building.
Sometimes it is the ISP that is the cause of lost or even blocked voip packets. For example, Telstra released an early siemens router for extensive use on their ADSL network but apparently had the firmware modified to block common voip port traffic. The block was invisible in the router config pages. One could only assume they were trying to prevent prople eroding their profit PSTN telephone call base.
All the port forwarding in that router didnt help. I ended up replacing the router and had a clear voip service working within minutes.

Thanks for your reply. It is appreciated.
0
 

Accepted Solution

by:
Cruicky earned 0 total points
ID: 24125563
Thankyou Kechka for the port scanner suggestion.

However a port scanner is of limited use in some cases, including mine.
This is because a port scanner attempts communication on ports, up to 65535 of them.
There has to be a reply to know if anything is open.
A simple port scan may not send data that warrants a reply from the device at the other end, so the port appears closed.
In my example, a complex call setup is initiated between the 2 Voip systems on port 6000 and 2 ports in the 30000-300031 range are mutually chosen during this process for TX and RX voice paths. Only then do voice packets start to flow on these 30000 series ports.
So, inteligent 2 way coommunication is required to solicite a response on port 6000.
And sending port sniffs on ports 30000-300031 will also be ignored as there has been no call setup negotiation and certainly no valid "voice" packets in a port sniff.
Basically everything is quiet on all ports until someone says the magic words.

The only way to test properly is to have a specific "sending"  tool at one end, & a matching "listening" tool at the destination.

Luckily Ive managed to locate such a tool.
It is simple and cannot test a range of ports, only 1 at a time, but it will do the job.
see http://www.simplecomtools.com/
Their free UDP (and TCP)  test tools have a built in transmit ans recieve component.
You can set the destination IP and port, and listen at the other end on the same port for the resultant test text to appear.

I wish PingPlotter would build this functionality into their test tool, and Peter at Nessoft may be doing that after my recommendations as Im sure he would do a brillant job.
In the mean time visit the site above for the free tool, if you need something like this.

Regards
Andrew C
0

Featured Post

How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline

Join & Write a Comment

Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
As companies replace their old PBX phone systems with Unified IP Communications, many are finding out that legacy applications such as fax do not work well with VoIP. Fortunately, Cloud Faxing provides a cost-effective alternative that works over an…
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now