Big LOL!

These ports should be open from within to the Internet, these shoud not be port forwarded (as I assume you did).
UPnP is evil...please don't use it...ever!

Though...some games do require port forwarded to the console (which sucks in my opinion).
What game(s) are giving you problems?

On portforward I found this information:
https://portforward.com/efootball-pes-2020/

You have to forward a sh*tload of ports:
TCP: 3074
UDP: 88,500,3074,3544,4500,5730-5731,5739

Hope you are not running an L2TP VPN server?

Ok so you can forward and open these port or use UPnP. Now I'm no fan of UPnP but in this case it might be the best option for you.

Can you do a export hide-sensitive and paste the output. Could be UPnP that needs tweaking. If not we can help with NAT rules as we can se interface names and so on that is needed.

Ok so you can forward and open these port or use UPnP. Now I'm no fan of UPnP but in this case it might be the best option for you.

Can you do a export hide-sensitive and paste the output. Could be UPnP that needs tweaking. If not we can help with NAT rules as we can se interface names and so on that is needed.

Thank you very much for your reply.
Shall I sent you this info via PM?

Thank you in advance

Hello,

So the NAT rules should be like this:
/ip firewall nat
add action=dst-nat chain=dstnat dst-port=3074 in-interface=ether1 protocol=tcp to-addresses=192.168.88.246
add action=dst-nat chain=dstnat dst-port=88,500,3074,3544,4500,5730-5731,5739 in-interface=ether1 protocol=udp to-addresses=192.168.88.246

This will take all inbound traffic to the router on these ports and dest-nat (port forward) to IP 192.168.88.246 which I assume is the Xbox

So now comes the point I'm unsure of but I think you need firewall rules as well. I think you need rules in both input and forward. Now I'm not sure about this but here are the rules:
/ip firewall filter
add action=accept chain=input dst-port=3074 in-interface=ether1 protocol=tcp
add action=accept chain=input dst-port=88,500,3074,3544,4500,5730-5731,5739 in-interface=ether1 protocol=udp
add action=accept chain=forward dst-port=3074 in-interface=ether1 protocol=tcp
add action=accept chain=forward dst-port=88,500,3074,3544,4500,5730-5731,5739 in-interface=ether1 protocol=udp

Note that these rules has to be above drop rules so you will have to move them after them being added.
Also note that if you want to use any of these ports in the future this NAT rule will break that. For example UDP 500 is used for some VPN tunnel and so on.
Regarding your UPnP rules look good but when it comes to Xbox and Mikrotik my experience is that sometimes it works and sometimes it does not

And last I did all this during a online meeting so please read trough as I might have made mistakes :-)

If you run the code in CLI the rules will be placed last and below the drop rules so they will not work. You have to move them so they are above the drop rules which are last.

If you run the code in CLI the rules will be placed last and below the drop rules so they will not work. You have to move them so they are above the drop rules which are last.

Hi there

I have been trying to resolve this issue for the past 15 days, reading through forums but no luck at all
As you may know, in order for XBOX to work properly, it needs an Open NAT - so far it is only Strict
According to the Microsoft XBOX's website https://support.xbox.com/en-US/help/har ... -xbox-live, the following ports should be open:

Port 88 (UDP)
Port 3074 (UDP and TCP) (I assigned this port manually)
Port 53 (UDP and TCP)
Port 80 (TCP)
Port 500 (UDP)
Port 3544 (UDP)
Port 4500 (UDP)
...

I said this in DM but I noticed that UPnP is disabled. So test to enable it would be a good start.
Also agreed ports are confusing as hell but hopefully UPnP would solve this.