Opened Port But Still Closed

With some games and applications, it may be necessary to open one or more ports or setup port forwarding on your home router. Below are the steps required with most routers and additional help and suggestions with troubleshooting encountered issues.

1. Test Ports Opened
2. Opened Port But Still Closed Christmas Day
3. Windows Opened Ports
4. Opened Ports But Still Closed
5. Check Port Opened

I have checked (portchecker.co/check). The ports I opened previously are still showing as open, but the port I am forwarding them through (3389) is closed. I have tried turning off the firewalls at both ends without success, tried something suggested elsewhere (i.e open an additional rule set as 3389.

After contacting game helpdesks I was told certain ports need to be open in order to ensure a smooth connection. So I set up a static IP and port forwarded from my router. However even after forwarding, some ports are still being shown as 'CLOSED' when testing. For example Call of Duty Black Ops requires 3074 TCP/UDP port open to play smoothly. Port 25 is a special issue. It's commonly used as an open relay for mail, and most of the world's spam can be traced back to it, which is why it is very common for ISPs to block it (meaning, it blocks you from being a spammer, not from receiving it). On the new 2016 server forced a group policy update and saw the test port allowance added in the firewall GUI. I still cannot telnet to the port and netstat -ano still does not list it as listening. I then logged into a Windows 7 computer on the LAN and added a port allowance to test telnet from the servers. When one refers to a port being 'closed,' the vernacular is that they're referring to a listening port on a server. When you talk about trying to open port 22 on your Windows machine, you're implying that you want to run an ssh daemon on that machine. You should start at a basic level and work your way up the stack.

Ports are often closed on a router to help prevent unauthorized access to your home network. Opening any additional ports on your router may decrease the overall security of your network.

If you want to open ports to give access to a game or an application like BitTorrent, make sure it is absolutely necessary. In some situations, it may be a firewall on your computer or router that is blocking access. Try temporarily disabling your firewall to make sure this is not causing your problems.

1. To use port forwarding, first determine the local IP address of the computer.
2. Open your router configuration.
3. Once in the router configuration, locate the port forwarding settings, often in a section such as Applications & Gaming or Port forwarding. If you are having trouble finding these settings, we suggest trying the Port forward site for exact steps on your router or refer to your router's documentation.
4. Once at the port forwarding screen, a screen similar to one of the example picture below appears.

Referring to the following picture as an example, with single port forwarding, you have different fields that need to be completed.

First, the Application Name is the name given to describe what the ports are that you are opening. In our example below, you can see this router has drop-down menus and empty boxes. If you are opening a common port such as FTP, selecting that option enables that port. However, in most situations, you need to type the name of the application. For example, you would type in the name of the game.

Next is the Externet Port and Internet Port. Enter the port you want to open in both of these fields. For example, if you were opening port 88, you would enter 88 in both boxes.

Next is the Protocol, which is often able to be either TCP, UDP, or both. If you are uncertain of the exact protocol needed, use both. If you do not have a Both option, create two open ports for both TCP and UDP.

Next is the To IP address, which is the IP address of the computer or networking device. This port is being forwarded to on the network.

Finally, once all these values are configured, check the Enabled box and click the Save Changes button.

If your application or game requires a range of ports, such as 6112-6119, your router should have a Port Range forwarding section (shown below). In this section, you would follow the same steps as those mentioned above, however, instead of entering an individual port, you would enter the starting and ending port number. For example, if you were given instructions to open port 6112-6119, you would enter 6112 as your starting port and 6119 as your ending port.

Finally, if after enabling port forwarding you are still encountering issues with another computer or application seeing your computer, it may be necessary to enable DMZ. Often this setting is in the same area of the router configuration as discussed above and can be changed from disabled to enabled.

Several services can test if your newly-opened port is recognized. We suggest trying Canyouseeme and the port checker tool from Portforward.

If you want to open ports to give access to a game or an application like BitTorrent, make sure it is absolutely necessary. In some situations, it may be a firewall on your computer or router that is blocking access. Try temporarily disabling your firewall to make sure this is not causing your problems.

1. To use port forwarding, first determine the local IP address of the computer.
2. Open your router configuration.
3. Once in the router configuration, locate the port forwarding settings, often in a section such as Applications & Gaming or Port forwarding. If you are having trouble finding these settings, we suggest trying the Port forward site for exact steps on your router or refer to your router's documentation.
4. Once at the port forwarding screen, a screen similar to one of the example picture below appears.

Referring to the following picture as an example, with single port forwarding, you have different fields that need to be completed.

First, the Application Name is the name given to describe what the ports are that you are opening. In our example below, you can see this router has drop-down menus and empty boxes. If you are opening a common port such as FTP, selecting that option enables that port. However, in most situations, you need to type the name of the application. For example, you would type in the name of the game.

Next is the Externet Port and Internet Port. Enter the port you want to open in both of these fields. For example, if you were opening port 88, you would enter 88 in both boxes.

Next is the Protocol, which is often able to be either TCP, UDP, or both. If you are uncertain of the exact protocol needed, use both. If you do not have a Both option, create two open ports for both TCP and UDP.

Next is the To IP address, which is the IP address of the computer or networking device. This port is being forwarded to on the network.

Finally, once all these values are configured, check the Enabled box and click the Save Changes button.

If your application or game requires a range of ports, such as 6112-6119, your router should have a Port Range forwarding section (shown below). In this section, you would follow the same steps as those mentioned above, however, instead of entering an individual port, you would enter the starting and ending port number. For example, if you were given instructions to open port 6112-6119, you would enter 6112 as your starting port and 6119 as your ending port.

Finally, if after enabling port forwarding you are still encountering issues with another computer or application seeing your computer, it may be necessary to enable DMZ. Often this setting is in the same area of the router configuration as discussed above and can be changed from disabled to enabled.

Several services can test if your newly-opened port is recognized. We suggest trying Canyouseeme and the port checker tool from Portforward.

• See the port and router definitions for further information and related links.

SI System Integration d.o.o. is an IT service provider.

If your firewall(s) is blocking the connections, than you should find references in your firewall logs. No connection should be blocked, without creating a log line.

So I think, it would be best, to inspect the logs of your firewalls to find the one that is blocking the connections.

You could also do some packet capturing behind the first firewall, to see, if the connection requests came trough the first one and than focus on the second firewall, if they did - or research the config of the first firewall, if they did not.

On WatchGuard firewalls, we have a tool called 'real time traffic monitor', that gives us information about all logged connections in real time. Since denied ones are logged by default, we can see the connection being blocked, together with the reason why the firewall has blocked it. Makes it easy to troubleshoot such cases. I don't know if you have something like that on PAN or ASA (afraid not?).