Xbox One DMZ?

GlacierFungus · February 16, 2015, 6:58pm

Is there anyway to put Xbox one into DMZ? I’ve searched this forum, opened up all the ports I was told to open, and I cannot seem to get my NAT open. All the forums on this just seem to end with no resolution, does it work? If you have a fix, please post the Terminal here or something. Thank you ahead of time

rgraham · February 18, 2015, 12:09am

What I’ve done is I give my XBOXs a static address in DHCP. Then create the necessary rule to permit that IP address to have full access.

GlacierFungus · February 18, 2015, 1:02am

Excellent, I’ll give it a try, thanks!

francisuk1989 · February 20, 2015, 11:39pm

Hello
Just wonted to post my NAT rules as theses work for me on v6.27 - Just replace 192.168.1.6 with you Xbox One LAN IP

Ports i used from the Microsoft Xbox Live website;
http://support.xbox.com/en-GB/xbox-one/networking/network-ports-used-xbox-live

/ip firewall nat
add chain=dstnat action=dst-nat to-addresses=192.168.1.6 to-ports=3074 protocol=tcp dst-port=3074 log=no 
add chain=srcnat action=src-nat to-addresses=192.168.1.6 to-ports=3074 protocol=udp src-port=3074 log=no
add chain=srcnat action=src-nat to-addresses=192.168.1.6 to-ports=500 protocol=udp src-port=500 log=no 
add chain=srcnat action=src-nat to-addresses=192.168.1.6 to-ports=3544 protocol=udp src-port=3544 log=no
add chain=srcnat action=src-nat to-addresses=192.168.1.6 to-ports=4500 protocol=udp src-port=4500 log=no

bhesterberg · October 6, 2017, 6:40pm

I’ve forwarded all these and still getting moderate or strict at times. What’s the word on setting it up in a DMZ?

pietroscherer · October 6, 2017, 8:33pm

Did you tried UPnP?

https://wiki.mikrotik.com/wiki/Manual:IP/UPnP

Also, you can try netmap:

https://wiki.mikrotik.com/wiki/Manual:IP/Firewall/NAT#1:1_mapping

djfrancis · October 7, 2017, 3:38pm

Hi, disable or remove your xbox rules and try this rules to “make a DMZ”. I use them and works very well:

/ip firewall nat
add chain=dstnat protocol=tcp dst-port=!8291 in-interface=YOUR_WAN_INTERFACE action=dst-nat to-addresses=YOUR_XBOX_IP comment="Redirect all TCP traffic except Winbox access to Xbox"
add chain=dstnat protocol=udp in-interface=YOUR_WAN_INTERFACE action=dst-nat to-addresses=YOUR_XBOX_IP comment="Redirect all UDP traffic to Xbox"

Replace YOUR_XBOX_IP to your Xbox IP address and YOUR_WAN_INTERFACE by your interface connected to internet (ether1, pppoe-out,…)

If this rules don’t work for you, please check if you have another router before this Mikrotik and check port forwarding. If you don’t have any router before your Mikrotik, call to your ISP and check if you have a public IP or if you are behind a NAT or CGNAT network..

Regards.

plankanater · October 9, 2017, 1:02am

Setting up UPNP always fixes the strict nat settings for me.