PS4 can go on internet throgh ros.
It shows nat2 type.
It will quit in about one minute when join to a “room”.
I have enabled upnp.
Any one suffer this ?
Have you enabled UPnP correctly? You can’t just tick it and it work.
You need to add both an internal and external interface through the interfaces windows (found in the IP>UPnP window).
Make sure your firewall will allow a dst-nat connection through it
If the above doesn’t work, try changing the IP details on your PS4 to point to an alternative DNS server (googles for example) as previously I have seen issues with PS Online not working when MikroTik was cacheing DNS requests.
do you have firewall filter rule that acceppt established and related connection on forward chain?
The setting:
ip upnp pri
enabled: yes
allow-disable-external-interface: no
show-dummy-rule: yes
ip upnp interfaces pri
INTERFACE TYPE FORCED-EXTERNAL-IP
0 LAN internal
1 WAN external
/ip> dhcp-server pri detail
Flags: X - disabled, I - invalid
0 name=“ceshi” interface=LAN lease-time=3d address-pool=111 bootp-support=dynamic bootp-lease-time=forever authoritative=after-2sec-delay always-broadcast=yes
/ip dhcp-server network pri
ADDRESS GATEWAY DNS-SERVER WINS-SERVER DOMAIN
0 10.0.0.0/24 10.0.0.1 202.106.46.151
202.106.196.115
When I set :
chain=dstnat action=dst-nat to-addresses=10.0.0.253 protocol=udp dst-address=114.x.x.46 in-interface=WAN
It work very well
ip fi fi pri
Flags: X - disabled, I - invalid, D - dynamic
[admin@MikroTik] >
For test, none rules added.
basic set up for Mikrotik routers on forward chain:
drop invalid
accept established and related;
drop everything that is not dst-nated.
for input chain
drop valid
accept ports you need: 80, 22, .8291 etc.
accept established and related;
drop everything ;
Thanks for your answer and advice.
No rules on forward chain,ps4 can’t establish udp connection.Is that any help for establishing connection with setting some strict rules?
I know what NAT is. But what is “nat2”? Is it double NAT? Is your mikrotik receiving a private IP on its WAN interface?
“nat2” is displaying on the ps4‘s setting panel which show that ps4 detect the “type” of user’s network enviroment. WAN interface of My mikrotik is settiong a public IP.
NAT Type 1 (Open) – You are either NOT behind a router/firewall OR you have already DMZ enabled. You shouldn’t run into any issues whilst gaming, but this may cause security issues.
NAT Type 2 (Moderate) –Your PS3/PS4 is connected properly and you shouldn’t run into any issues.
NAT Type 3 (Strict) – You may be able to connect to the PSN and perform downloads/updates other functions may not work as intended.
Make use of uPnP, then also add rule in firewall with chain forward, action accept, in-interface WAN, Connection NAT state dstnat
Thanks .
What is “Connection NAT state dstna”?
And my firewall/filter is empty,dosen’t it mean accept default?
Connection NAT state dstnat = Connection is being Destination NATted, i.e. the destination NATted connections dynamically created by UPnP
Now,the problem is:
When I set :
chain=dstnat action=dst-nat to-addresses=10.0.0.253 protocol=udp dst-address=114.x.x.46 in-interface=WAN
It work very well
The same settiong of firewall filter (empty),disable the above setting,although there were dynamic dst-natfailed,but login failed…
The above should look like this in /ip firewall filter:
add action=accept chain=forward comment="Allow if Destination NAT Rule" connection-nat-state=dstnat in-interface=<WAN Interface>
Thanks!
In my version of ros dosn’t include connection-nat-state
For testing,leave empty in firewall-filter,the same settiong of filter, the “manual” dstnat works and “Dynamic” dosen’t
Really? Not in the advanced tab in the NAT rules?
Only versions above 6.22 support that
If he does not have that on his version, then it must be very old and I would think time to update, atleast to 6.40.6