Skip to main content
JeffreyWest's profile
JeffreyWest
1st Reply
1st Topic
Conversation Starter

New problem solver

 • 

9 Messages

Wednesday, September 16th, 2015

Static IPs and Router Setup

I have a /29 block of addresses. I'd like to pass two public IPs to two different machines on my LAN. To accomplish this, I need to :

1. setup 1-1 NAT assigning Public IP to the local IP for each machine

2. use True Status IP Port Management, as opposed to Port Forwarding, to map the incoming traffic to the correct port

 

Can anyone tell me if I have this right? If so, are there any other concerns or gotchas that I should be aware of?

 

Thanks in advance.

Jeff

Question

 • 

Updated 

11 years ago

13.2K

4

0

0

Oldest First
Selected Oldest First
VBSSP-RICH

Advocate

 • 

1.4K Messages

11 years ago

Hello JeffreyWest and welcome,

 

Please see my comments below.  Thanks.

 

I have a /29 block of addresses. I'd like to pass two public IPs to two different machines on my LAN. To accomplish this, I need to :

 

So you have a 5 block static IP address so you can certainly use the True Static IP Port Management (TSIPM) to open any specific Routable Static IP Device(s) port(s).

 

 

1. setup 1-1 NAT assigning Public IP to the local IP for each machine

 

Yes, you can use 1-1 Static NAT to enable any specific internal Comcast Gateway DHCP Server 10.1.10.XXX device to valid external IP address(es)

 

2. use True Status IP Port Management, as opposed to Port Forwarding, to map the incoming traffic to the correct port

 

Yes, the standard port forward is primarily used to open ports for any internal Comcast Gateway DHCP Server 10.1.10.XXX device, where the TSIPM is used specific for opening Routable Static IP Device(s) port(s).

 

Hope this helps you out.

 

0

0

derekc

New Contributor

 • 

7 Messages

11 years ago

You said:

Not sure what you expect for data processing by disabling ALL ports on ALL your static IP routable devices?! You need to consider using the using the True Static IP Port Management.Block All Ports With the following Exceptions, then add ONLY the ports of whatever the applications you are needing open on each individual routable static IP device (such as 50.XXX.43.90/91/92.93). The way you have it currently configured all routable static IP device(s) ports are ALL blocked , therefore, no incoming data processing activity whatsoever.  So even your NATTing outgoing can process data but no incoming to your routable servers until you open the exact application ports on each of the routable static IP devices.   

 

You do you mean by "Not sure what you expect for data processing by disabling ALL ports on ALL your static IP routable devices?!" Which page of the GUI are you referring to?

 

Did you see that BEFORE I setup any port forwarding, The SMTP port to one of my servers is ALREADY open and forwarded, as confirmed by mxtoolbox.com when I did a SMTP test? Shouldn't it be NOT OPEN until I have a rule in place?

 

Pseudo Bridge mode is more than just disabling the DHCP server. Here is more info:

http://www.handymanhowto.com/how-to-configure-a-comcast-business-class-static-ip-address/

And if you google "comcast business class pseudo bridge", you will see how people are trying to make this "smart" gateway a dumb modem passing thru ALL 5 IPs, not just ONE.

 

I can't get rid of my 5 static IPs. I need them. I pay for them for a reason. 

0

0