Sign in with
Sign up | Sign in
Your question

SpeedTouch ADSL support static and subnet /29 ip addresses?

Last response: in Networking
Share
December 9, 2006 12:39:08 AM

My subnet /29 public ip seems not working for incoming requests.

Recently, I switched the ADSL ISP. The new one provide me the static ip and subnet /29 (5 usable public ips). The ADSL modem is: SpeedTouch 546 v6.

The LAN network has two ip address blocks:
192.168.1.254/24
206.*.*.1/29

Two home pcs ip: 192.168.1.64 and 192.168.1.65, both work fine for intnernet outbound connection.

Server public ip: 206.*.*.2 works fine for outbound internet connection, but its inbound won't work at all.

First of all,

I think probably, the subnet /29 was not in ISP routing table. Confirmed with ISP, it is fine.

Then,

I doubt it could be this SpeedTouch 546 ADSL modem setup. Purchased from ISP, but they have not instructions or suggestion what to do next.

Anyone have experience with such static ip with subnet block setup for ADSL modem to support public ip address??

Thanks in advance
December 14, 2006 7:47:31 PM

Any help?

Follow ISP suggestions, all subnet/29 ip is visiable for outside. But servers applications like http/ssh/smtp won't be accessible from outside either.

Ping to inside server - 206.xxx.xxx.145 works fine. So routing and NAT is ok.

I think this SpeedTouch ADSL 546v6 modem need to make change to its firewall or system services to pass traffic properly.


**************************
:ip ipadd intf=LocalNetwork addr=206.xxx.xxx.145 netmask=255.255.255.248
addroute=enabled
:ip ipconfig addr=206.xxx.xxx.145 preferred=enabled primary=enabled
:nat ifconfig intf=Internet translation=disabled
:nat ifconfig intf=LocalNetwork translation=disabled
:firewall config state=disabled
:D sd config state=disabled
:ids config state=disabled
:saveall
:exit


*********************************************************************
***************** output of failed inbound connections **************
*********************************************************************

********** firewall config output from modem *********

{jfang}=>:firewall list

Config
======
State : disabled
Keep : disabled
TcpChecks : none
TcpWindow : 65536
UdpChecks : enabled
IcmpChecks : enabled
LogDefault : disabled
LogThreshold : enabled

Modules
=======
Module State Text Hooks
-----------------------------------------------------------------------------------------------------------
fire enabled Firewall Administration Module sink, forward, source
host_service enabled Firewall Host Service Module forward
level enabled Firewall Level Module forward
system_service enabled Firewall System Service Module sink
multicast enabled Multicast Forwarding Module forward

********** tcpdump in inside server**********
19:50:17.283528 209.xxx.xxx.231.60333 > 206-xxx-xxx-148.dsl.teksavvy.com.http: S 2996355142:2996355142(0) win 65535 <mss 1380,nop,nop,sackOK,nop,wscale 1,nop,nop,timestamp 1221286918 0> (DF) [tos 0x10]
19:50:17.283618 206-xxx-xxx-148.dsl.teksavvy.com.http > 209.xxx.xxx.231.60333: S 1624743766:1624743766(0) ack 2996355143 win 16416 <mss 1460,nop,wscale 0,nop,nop,timestamp 44186486 1221286918> (DF)
19:50:18.281911 206-xxx-xxx-148.dsl.teksavvy.com.http > 209.xxx.xxx.231.60333: S 1624743766:1624743766(0) ack 2996355143 win 16416 <mss 1460,nop,wscale 0,nop,nop,timestamp 44186586 1221286918> (DF)

19:50:20.275572 209.xxx.xxx.231.60333 > 206-xxx-xxx-148.dsl.teksavvy.com.http: S 2996355142:2996355142(0) win 65535 <mss 1380,nop,nop,sackOK,nop,wscale 1,nop,nop,timestamp 1221287218 0> (DF) [tos 0x10]
19:50:20.275646 206-xxx-xxx-148.dsl.teksavvy.com.http > 209.xxx.xxx.231.60333: . ack 1 win 16416 <nop,nop,timestamp 44186785 1221287218> (DF)
19:50:20.281926 206-xxx-xxx-148.dsl.teksavvy.com.http > 209.xxx.xxx.231.60333: S 1624743766:1624743766(0) ack 2996355143 win 16416 <mss 1460,nop,wscale 0,nop,nop,timestamp 44186786 1221287218> (DF)

19:50:23.476152 209.xxx.xxx.231.60333 > 206-xxx-xxx-148.dsl.teksavvy.com.http: S 2996355142:2996355142(0) win 65535 <mss 1380,nop,nop,sackOK,nop,wscale 1,nop,nop,timestamp 1221287538 0> (DF) [tos 0x10]
19:50:23.476223 206-xxx-xxx-148.dsl.teksavvy.com.http > 209.xxx.xxx.231.60333: . ack 1 win 16416 <nop,nop,timestamp 44187105 1221287538> (DF)
**********
December 19, 2006 4:13:44 PM

Sounds like you need to change firewall settings. Your ISP should have some sort of advanced support that can help you. If not, then download the manual for the router, it should tell you what to do.
!