Hi MikroTik Community. I hope you can help me with this, because for the love of god I cant figure it out.
I’m trying to use UPnP on my RB Metal 2SHPn. Its enabled, added both ether1 for Internal Interface, and wlan1 for External Interface. Have both top and bottom opt. checked off, but still Xbox One says “UPnP not successful.” and recommends that I go to there website to figure it out. Ive spent about 2 days on this, and still to no avail solved. Here is my Setup
1st: ISP Router (UPnP Enabled with Zero Config)
2nd: RB Metal 2SHPn (Quick-Set to CPE/Router - UPnP Enabled - Is Wirelessly Connected to ISP Router)
3rd: hAP ac lite (Quick-Set to Home AP Dual - Nothing else really configured)
Both the RB Metal 2SHPn and hAP ac lite are at Firmware ver: 6.40.5 (I don’t know if UPnP has any bugs in this release)
Id like to make you guys aware that I’m not completely expert at this stuff, and would consider myself right now Novice - Intermediate experience. So if any advice or solution is provided, please provide detailed steps on how to conduct it.
Any help and input is greatly appreciated. Thanks!
It kind of reads like you’ve either double or maybe even triple NAT’d the connection but I can’t tell too well. What IP range is the ISP router giving out and what IP address does your XBOX get?
Well my ISP Router gives an IP range of 10.0.0.2-10.0.0.254 on the /24 subnet. Since I have the Metal configured as a CPE/Router, it gives out a range of 192.168.88.10-192.168.88.254 on the /24 subnet. The hAP ac lite is connected to the Metal via Ethernet on ether5, were PoE is provided. Mind that the hAP ac lite is configured as Home AP Dual, with nothing else really configured. It has no filter rules, NAT rules, or anything of that nature.
Double NAT!
If serious, you need global IP on your router from provider. You can’t dstnat microsoft port on the provider router and he is not interested in this…sorry.
IP you don’t need are:
10.0.0.0 mask 255.0.0.0 (/8)
172.16.0.0 mask 255.240.0.0 (/12)
192.168.0.0 mask 255.255.0.0 (/16)
Ok, in A+ Class right now. What do you mean by that? Can you be more explicit of is not interested, what I need and dont need. Also, main reason why I need UPnP to work on my Metal, is due to multiple Xbox Ones. 2 of them to be exact. So I cant port forward, or else one issue will be solved, but other will occur.
What logically you need is dstnat chain, in wich you will translate dst port (xbox 3074?) from dst-address(your 10.11.12.13:3074) to-address in your local network(192.168.0.2:3074). That’s all. BUT
In Internet your IP is defferent, e.g. 5.142.57.40, and it’s belongs to your ISP. When your packet as destination hit the ISP router, he will search in NAT table for translation rule for your 10.11.12.13 to 3074 port and won’t find it, because connection won’t be related for you, it will be new. After this, your packet will be dropped and you’ll see “UPnP not successful.” UPnP is auto NAT forwarding for interfaces in router, that could be helpful for them. Auto - not cool. So better make static nat translation by yourself in one direction you need. That is more secure. This is for one NAT translation. In your case, you will need globally routable IP. I mean e.g. “5.142.57.40” must be on your router, not on the router of your ISP.
I understand what your saying, but I can’t do that since we have 2 Xbox ones, which is the reason as of why id like UPnP to start working. Port forwarding dont think will work for my situation.
Ok, well the DHCP range for my ISP Router is 10.0.0.2-10.0.0.254 on subnet 255.255.255.0 ; Please let me know if that is Class A IP address.
For the UPnP, Id like to say that Im willing to take the Security Risk so I can get it to work for the 2 Xbox Ones in this household. If possible, please suggest anything for the UPnP that might get it to start working. If not, please try and suggest something like it besides Port Forwarding. If RouterOS has somekind of implementation of Port Triggering, which Ive heard can work with multiple Xbox’s, then Ill be galed to try that out rather than UPnP. Just let me know on how to conduct that in Winbox, with thorough and detailed steps. Thanks again for your time and effort.
