ZoneAlarm Secure Wireless Router Z100G Discussion Forum
ZoneAlarm Secure Wireless Router Z100G Discussion Forum
|
|
|
For other ZoneAlarm products click here Our support personnel monitor this forum, however note this is not an official support channel - to contact support, click the button on the right. |
|
sofaware.infopop.cc SofaWare Discussion Groups ZoneAlarm Z100G Secure Wireless Router XBOX 360 Work around using Z100G behind another Router|
Go
|
New
|
Find
|
Notify
|
Tools
|
Reply
|
|
|
Member |
Please read for Possible solution to have Open NAT
|
||
|
|
Member |
While support tries to figure out the NAT issue for XBOX 360 to work with the Z100G I did the following so I could have my XBOX 360 have a NAT of 'OPEN', which is the most preferred NAT type.
I decided to install a LinkSys Router (specifically the WRT150N) between my Cable Modem and the Z100G. I then only allowed wireless access to the LinkSys from the XBOX 360 and no other device (MAC Filtering, WPA/TKIP password, Hidden SSID). I placed the Z100G on the LinkSys DMZ and all is working beautifully. Keep in mind you don't have to use wireless. Because of the location of our Game Room and the Home Office, I chose to use wireless.
I am running two wireless networks. One is for the XBOX 360 over LinkSys with WPA/TKIP and for home/office I am using the Z100G with WPA2/AES.
You can use most any other device to do this that is supported by XBOX Live to do this. I chose the WRT150N for the extended wireless reach and QOS.
DETAILED Mapping:
Cable Modem --> LinkSys WRT150N [WAN IP: Assigned with IP Address from Cable Provider] LAN IP: 10.100.100.100]
|
+--> XBox 360 (Wireless using SSID 'For Gaming' with WPA/TKIP) [IP: 10.100.100.102]
|
+--> Z100G [WAN IP: 10.100.100.101] [LAN IP: 192.168.1.1]
|
+--> Wii [192.168.1.2]
|
+--> Printer [192.168.1.x]
|
+--> PC [192.168.1.x]
|
+--> PC [192.168.1.x]
|
+--> PC [192.168.1.x]
|
+--> PC [192.168.1.x]
|
+--> PC [192.168.1.x]
|
+--> Laptop (Wireless using SSID 'Private Security' with WPA2/AES) [IP: 192.168.2.x]
LinkSys Configuration
+ Enable DHCP - 10.100.100.100 starting address
* Static Assign Z100G to 10.100.100.101
* Static Assign XBOX to 10.100.100.102
+ Gaming mode enabled
+ Z100G was placed as DMZ Host in Linksys
+ Enable UPnP - For XBOX 360 to use (Can be disabled if you enter in XBOX ports manually)
+ Enable Wireless (This is how my XBOX 360 gets online)
* MAC Filtering on
~ Add your XBOX 360 MAC Address in your allow list
+ Allow the XBOX to have higher priority for gaming then your home network that is connected through the Z100G.
* Enable QOS and place the XBOX MAC in and set to Medium.
+ Since I do work from home very often and want VPN support to work for the Z100G:
* Enabled PPTP Passthrough
* Enabled L2TP Passthrough
* Enabled IPSec Passthrough
+ Enable DMZ and placed Z100G (10.100.100.101)
* LinkSys will allow traffic to go to the Z100G for unrestricted use
+ Disable SPI Firewall (No need for to firewall XBOX 360 and reduce network overhead to Z100G)
Z100G Configuration
+ Change the WAN connection type to LAN |
|||
|
|
Member |
That really isn't a solution using the purchased product, it is merely a workaround. A solution would not to have to purchase/use additional infrastructure to have open NAT with XBOX Live
|
|||
|
|
Member |
cbischoff,
If you read my first few sentences 'While support tries to figure out the NAT issue for XBOX 360 to work with the Z100G I did the following so I could have my XBOX 360 have a NAT of 'OPEN' ' I wasn't going to wait for some undetermined amount of time and not be able to use my xbox live. Also I like the security features of the Z100G so I had to take it upon myself to have a solution to using both products concurrently. The term 'solution' is used in meaning to provide an answer to a problem. Although it may not be the answer you are hoping for, it is an answer. And for those who may not understand how to deal with networks in such a fashion, I provided the information until Support resolved the issue. In the future I will not use the term solution but clarify a 'temporary workaround' using 3rd party hardware in conjunction with the z100g. Does that satisify you? Regards. |
|||
|
|
Advanced Member |
The Xbox/ Xbox Live/ 360 issue has always been sort of the pink elephant in the room.. At least someone came up with a way to make it work untill Sofa resolves the issue.. dont bite off his head..
Thanks -bugeek |
|||
|
|
Member |
First off I didn't "bite" anyone's head off and if thats how it was perceieved then thats your issue.
I only provided a correction particularly since the whole XBOX live NAT issue is a hot topic and I didn't want people to jump in joy (cause I initially did when I read the topic) to find out you basically just buy a MS supported firewall. test/implementation environment Checkpoint VPN-1 Edge W Firmware 7.5.48x ISP Qwest DSL Please note this is not a ZoneAlarm Router so I cannot guarantee this will work for you or if you even have the same functionality. This will require a static IP address from your ISP (only 1 which is an additional 5 dollars a month for Qwest and since I do not pay for my Internet service...). To be honest with a monthly charge (assuming your ISP provides static IP addresses) it might be cheaper to purchase a MS supported router). You will need create two network objects one for the XBOX 360 and the other using the IP address provided by you ISP. I wont go through he steps since the online documentation details the process. You will need to manually create the hide NAT rule specific to the XBOX 360 using the network object you created using the ISP provided IP address. Goto the Security section, then NAT tab there you will create the NAT rules. The wizard is pretty simple, just click new and follow through the steps. Please note you must create the Hide NAT rule specific to the XBOX 360. Original Packet Source XBOX 360 Destination WAN (Internet) Service Any Service Translated Packet Source This needs to be the object you created using the ISP provide IP address. ~DO NOT~ use the default "This Gateway" object. Then build the rest of the Hide NAT rules using your active networks (Original Packet Source = LAN or WLAN) Here is the export of my NAT config add nat rules orig-src xbox360_WLAN orig-dst wan orig-svc any nat-src EXTERNAL_GW nat-dst original nat-svc original name "XBOX HIDE NAT" index 1 At this point you should get an "open nat" setting from XBOX Live test (assuming you also pass the ICMP and MTU setting). The you will need to create the port-forward security rules (so you can host games for example Halo 3). To create the rule goto the Security section, then Rule tab. Just use the wizard and the online documentation for specifics, but I only forwarded ports 88(tcp/udp) and 3074 (tcp/udp) to the XBOX 360 Here is the export of my Firewall rule settings config add fw rules service custom action allow src wan dest gw forward-to xbox360_WLAN ports 88 protocol any qosclass Important redirectport 0 index 16 log false disabled false description "XBOX Live" time always add fw rules service custom action allow src wan dest gw forward-to xbox360_WLAN ports 3074 protocol any qosclass Important redirectport 0 index 17 log false disabled false description "XBOX Live" time always Now if you cannot get a static IP address you can still create the object using the DHCP IP address then you will need to check and update it before you play online every time. |
|||
|
|
Junior Member |
Have they ever figured out how to fix this issue?
|
|||
|
| Powered by Eve Community |
 | Please Wait. Your request is being processed... |
|
sofaware.infopop.cc SofaWare Discussion Groups ZoneAlarm Z100G Secure Wireless Router XBOX 360 Work around using Z100G behind another Router | View $GS_USERNAME's Public Profile |
| Add $GS_USERNAME to my Ignore List |
| View Recent Posts by $GS_USERNAME |
| Notify me of New Posts by $GS_USERNAME |