{"id":9105,"date":"2024-08-27T16:04:38","date_gmt":"2024-08-27T16:04:38","guid":{"rendered":"https:\/\/goodwriterz.com\/site\/?p=9105"},"modified":"2024-08-27T16:04:38","modified_gmt":"2024-08-27T16:04:38","slug":"how-to-port-forward-on-your-router","status":"publish","type":"post","link":"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/","title":{"rendered":"How to Port Forward on Your Router"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_68_1 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title \" >\u062c\u062f\u0648\u0644 \u0627\u0644\u0645\u062d\u062a\u0648\u064a\u0627\u062a<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 eztoc-toggle-hide-by-default' ><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Key_Takeaways\" title=\"Key Takeaways\">Key Takeaways<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#What_Is_Port_Forwarding\" title=\"What Is Port Forwarding?\">What Is Port Forwarding?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#How_Your_Router_Handles_Requests_and_Uses_Ports\" title=\"How Your Router Handles Requests and Uses Ports\">How Your Router Handles Requests and Uses Ports<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Why_You_Need_to_Forward_Ports\" title=\"Why You Need to Forward Ports\">Why You Need to Forward Ports<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Considerations_Before_Configuring_Your_Router\" title=\"Considerations Before Configuring Your Router\">Considerations Before Configuring Your Router<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Set_Static_IP_Address_for_Your_Devices\" title=\"Set Static IP Address for Your Devices\">Set Static IP Address for Your Devices<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Know_Your_IP_Address_and_Set_a_Dynamic_DNS_Address\" title=\"Know Your IP Address (and Set a Dynamic DNS Address)\">Know Your IP Address (and Set a Dynamic DNS Address)<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Pay_Attention_to_Local_Firewalls\" title=\"Pay Attention to Local Firewalls\">Pay Attention to Local Firewalls<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#How_to_Set_Up_Port_Forwarding_on_Your_Router\" title=\"How to Set Up Port Forwarding on Your Router\">How to Set Up Port Forwarding on Your Router<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Step_One_Locate_the_Port_Forwarding_Rules_on_Your_Router\" title=\"Step One: Locate the Port Forwarding Rules on Your Router\">Step One: Locate the Port Forwarding Rules on Your Router<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Step_Two_Create_a_Port_Forwarding_Rule\" title=\"Step Two: Create a Port Forwarding Rule\">Step Two: Create a Port Forwarding Rule<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Step_Three_Test_Your_Port_Forwarding_Rule\" title=\"Step Three: Test\u00a0Your Port Forwarding Rule\">Step Three: Test\u00a0Your Port Forwarding Rule<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Xfinity_Port_Forwarding_With_an_xFi_Gateway\" title=\"Xfinity Port Forwarding With an xFi Gateway\">Xfinity Port Forwarding With an xFi Gateway<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Common_Applications_for_Port_Forwarding\" title=\"Common Applications for Port Forwarding\">Common Applications for Port Forwarding<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-15\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Security_Precautions_for_Port_Forwarding\" title=\"Security Precautions for Port Forwarding\">Security Precautions for Port Forwarding<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-16\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Dont_Run_Servers_As_Admin_or_Root\" title=\"Don&#8217;t Run Servers As Admin or Root\">Don&#8217;t Run Servers As Admin or Root<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-17\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Disable_Root_Login_Over_SSH\" title=\"Disable Root Login Over SSH\">Disable Root Login Over SSH<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-18\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#You_Can_Change_Your_Ports_But_Dont_Rely_On_It\" title=\"You Can Change Your Ports, But Don&#8217;t Rely On It\">You Can Change Your Ports, But Don&#8217;t Rely On It<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-19\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Install_Fail2Ban_on_Linux_Servers\" title=\"Install Fail2Ban on Linux Servers\">Install Fail2Ban on Linux Servers<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-20\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Use_Security_Keys_For_SSH_Whenever_Possible\" title=\"Use Security Keys For SSH Whenever Possible\">Use Security Keys For SSH Whenever Possible<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-21\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Only_Allow_Connections_from_Whitelisted_Addresses\" title=\"Only Allow Connections from Whitelisted Addresses\">Only Allow Connections from Whitelisted Addresses<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-22\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/#Consider_Separating_Your_Local_Area_Network_With_a_VLANs\" title=\"Consider Separating Your Local Area Network With a VLANs\">Consider Separating Your Local Area Network With a VLANs<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<div>\n<section class=\"emaki-custom-block emaki-custom-key-points\">\n<div class=\"emaki-custom key-points\" id=\"custom_block_0\">\n<h3 class=\"title icon i-list\"><span class=\"ez-toc-section\" id=\"Key_Takeaways\"><\/span>Key Takeaways<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<div class=\"custom_block-content key-points\">\n<p> To forward a port on your router, log into your router, find the &#8220;Port Forwarding&#8221; section, and then create a rule applying to the device you&#8217;re using to host. You should also assign a static IP address to the host computer. <\/p>\n<\/div><\/div>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":0,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":0,\"nbrPlacementsScanned\":0,\"ruleCount\":200,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":240} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":1,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":1,\"nbrPlacementsScanned\":0,\"ruleCount\":200,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":200,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/section>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":1,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":1,\"nbrPlacementsScanned\":1,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":0} --><br \/>\n<!-- No winning ad found for zone: below first paragraph! --><\/p>\n<p> Although modern Wi-Fi routers handle most functions automatically, some applications will require you to manually\u00a0forward a port in your router&#8217;s settings. Fortunately, it&#8217;s very simple to forward ports on a router if you know where to look <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":1,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":1,\"nbrPlacementsScanned\":1,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":243} --><br \/>\n<!-- No winning ad found for zone: native in content! --><\/p>\n<h2 id=\"what-is-port-forwarding\"><span class=\"ez-toc-section\" id=\"What_Is_Port_Forwarding\"><\/span> What Is Port Forwarding? <span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p> Port Forwarding (or port mapping) allows external traffic from the internet to connect to a device, like a computer, on a private network. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":1,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":1,\"nbrPlacementsScanned\":1,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":383} --><\/p>\n<p> Say you want to host a Minecraft server for your friends on your computer. When they try to connect, their traffic has to be sent to the correct computer on your network, and their connection must be permitted by your router. Your router uses port forwarding rules to sort out which computer should be sent the traffic relating to the Minecraft server. Of course, it isn&#8217;t just game servers &#8212; if it involves internet traffic, ports are involved. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":1,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":1,\"nbrPlacementsScanned\":1,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":832} --><\/p>\n<p> Let&#8217;s look at the details of how it happens. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":1,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":1,\"nbrPlacementsScanned\":1,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":878} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":878,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":22,\"nextBlockCount\":264,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1142} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":1,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":1,\"nbrPlacementsScanned\":1,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":2,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":2,\"nbrPlacementsScanned\":1,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<h3 id=\"how-your-router-handles-requests-and-uses-ports\"><span class=\"ez-toc-section\" id=\"How_Your_Router_Handles_Requests_and_Uses_Ports\"><\/span> How Your Router Handles Requests and Uses Ports <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> Here&#8217;s a map of a simple home network. The cloud icon represents the greater internet and your public, or forward-facing, Internet Protocol (IP) address. This IP address represents your entire household from the outside world &#8212; like a street address, in a way. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":2,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":2,\"nbrPlacementsScanned\":2,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":242} --><\/p>\n<p> The red address 192.1.168.1 is the router address within your network. The additional addresses all belong to the computers seen at the bottom of the image. If your public IP address is like a street address, think of the internal IP addresses like apartment numbers for that street address. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":2,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":2,\"nbrPlacementsScanned\":2,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":535} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :68.461538461538%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"445\" loading=\"lazy\" decoding=\"async\" alt=\"A LAN network diagram. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/How-to-Port-Forward-on-Your-Router.png?resize=650%2C445&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":2,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":2,\"nbrPlacementsScanned\":2,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":775} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":775,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":125,\"nextBlockCount\":344,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1119} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":2,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":2,\"nbrPlacementsScanned\":2,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":3,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":3,\"nbrPlacementsScanned\":2,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> The diagram raises an interesting question which you may not have thought about before. How does all the information from the internet get to the right device inside the network? If you visit howtogeek.com on your laptop how does it end up on your laptop and not your son&#8217;s desktop if the public-facing IP address is the same for all devices? <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":3,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":3,\"nbrPlacementsScanned\":3,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":219} --><\/p>\n<p> This is thanks to a\u00a0wonderful bit of routing magic known as a Network Address Translation (NAT). This function occurs at the router level where the NAT acts like a traffic cop, directing the flow of network traffic through the router so that a single public IP address can be shared among all the devices behind the router. Because of the NAT, everyone in your household can request web sites and other internet content simultaneously and it will all be delivered to the right device. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":3,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":3,\"nbrPlacementsScanned\":3,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":706} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":706,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":194,\"nextBlockCount\":542,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1248} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":3,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":3,\"nbrPlacementsScanned\":3,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":4,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":4,\"nbrPlacementsScanned\":3,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> So where do ports come into this process? Ports are an old but useful holdover from the early days of network computing. Back in the day, when computers could only run one application at a time, all you had to do was point one computer at another computer on the network to connect them as they would be running the same application. Once computers became sophisticated to run multiple applications, early computer scientists had to wrestle with the issue of ensuring applications connected to the right applications. Thus, ports were born. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":4,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":4,\"nbrPlacementsScanned\":4,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":348} --><\/p>\n<p> Some\u00a0ports have specific applications which are standards throughout the computing industry. When you fetch a web page, for example, it uses port 80. The receiving computer&#8217;s software knows that port 80 is used for serving http documents, so it listens there and responds accordingly. If you send an http request over a different port &#8212; say, 143 &#8212; the web server won&#8217;t recognize it because it&#8217;s not listening there (although something else might be, like an IMAP email server which traditionally uses that port). <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":4,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":4,\"nbrPlacementsScanned\":4,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":867} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":867,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":33,\"nextBlockCount\":358,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1225} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":4,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":4,\"nbrPlacementsScanned\":4,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":5,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":5,\"nbrPlacementsScanned\":4,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> Other ports don&#8217;t have pre-assigned uses, and you can use them for whatever you want. To avoid interfering with other standard-abiding applications, it&#8217;s best to use larger numbers for these alternate configurations. Plex Media Server uses port 32400, for example, and Minecraft servers use 25565 &#8212; both numbers that fall into this &#8220;fair game&#8221; territory. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":5,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":5,\"nbrPlacementsScanned\":5,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":325} --><\/p>\n<p> Each port can be used via either TCP or UDP. TCP, or Transmission Control Protocol, is what&#8217;s used most commonly. UDP, or User Datagram Protocol, is less widely used in home applications with one major exception: BitTorrent. Depending on what is listening, it&#8217;ll be expecting requests to be made in either one or the other of these protocols. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":5,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":5,\"nbrPlacementsScanned\":5,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":669} --><\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":5,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":5,\"nbrPlacementsScanned\":5,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":669} --><\/p>\n<h2 id=\"why-you-need-to-forward-ports\"><span class=\"ez-toc-section\" id=\"Why_You_Need_to_Forward_Ports\"><\/span> Why You Need to Forward Ports <span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p> So\u00a0why exactly would you need to forward ports? While some applications take advantage of NAT\u00a0to set their own ports and handle all the configuration for you, there are still plenty of applications that do not, and you&#8217;ll need to give your router a helping hand when it comes to connecting services and applications. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":5,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":5,\"nbrPlacementsScanned\":5,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":989} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":6,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":6,\"nbrPlacementsScanned\":5,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<p> In the diagram below we&#8217;re starting with a simple premise. You&#8217;re on your laptop somewhere in the world (with an IP address of 987.76.54.123), and you want to connect to your home network to access some files. If you simply plug your home IP address (123.45.67.891) into whatever tool you&#8217;re using (an FTP client or remote desktop application, for example), and that tool doesn&#8217;t\u00a0take advantage of those advanced router features we just mentioned, you&#8217;re out of luck. It won&#8217;t know where to send your request, and nothing will happen. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":6,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":6,\"nbrPlacementsScanned\":6,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":537} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :68.461538461538%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_438_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"445\" loading=\"lazy\" decoding=\"async\" alt=\"An external request without port forwarding may be blocked. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_438_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_438_How-to-Port-Forward-on-Your-Router.png?resize=650%2C445&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":6,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":6,\"nbrPlacementsScanned\":6,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":777} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":777,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":123,\"nextBlockCount\":399,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1176} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":6,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":6,\"nbrPlacementsScanned\":6,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":7,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":7,\"nbrPlacementsScanned\":6,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> This, by the way, is a\u00a0great security feature. If somebody connects to your home network and they aren&#8217;t connected to a valid port, you\u00a0want the connection to get rejected. That&#8217;s the firewall element of your router doing its job: rejecting unwelcome requests. If the person knocking on your virtual door, however, is you, then the rejection isn&#8217;t so welcome and we need to do a little tweaking. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":7,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":7,\"nbrPlacementsScanned\":7,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":276} --><\/p>\n<p> To solve that problem, you want to tell your router &#8220;hey: when I access you with this program, you&#8217;ll need to send it to this device at this port&#8221;. With those instructions in place, your router will make sure you can access the right computer and application on your home network. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":7,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":7,\"nbrPlacementsScanned\":7,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":558} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :68.461538461538%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_887_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"445\" loading=\"lazy\" decoding=\"async\" alt=\"Port forwarding can be used to direct external requests correctly. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_887_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_887_How-to-Port-Forward-on-Your-Router.png?resize=650%2C445&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":7,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":7,\"nbrPlacementsScanned\":7,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":798} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":798,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":102,\"nextBlockCount\":684,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1482} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":7,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":7,\"nbrPlacementsScanned\":7,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":8,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":8,\"nbrPlacementsScanned\":7,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> So in this example, when you&#8217;re out and about and using your laptop, you use different ports to make your requests. When you access your home network&#8217;s IP address using port 22, your router at home knows that this should go to 192.168.1.100 inside the network. Then, the SSH daemon on your Linux installation will respond. At the same time, you can make a request over port 80, which your router will send to the webserver you&#8217;re running at 192.168.1.150. Or, you can try to remotely control your sister&#8217;s laptop with VNC, and your router will connect you to your laptop at 192.168.1.200. In this way, you can easily connect to all the devices you&#8217;ve set up a port forward rule for. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":8,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":8,\"nbrPlacementsScanned\":8,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":582} --><\/p>\n<p> The usefulness of port forwarding doesn&#8217;t end there though! You can even use port forwarding to change existing services&#8217; port numbers for clarity and convenience.\u00a0For example, let&#8217;s say you have two web servers running on your home network and you want one to be readily and obviously accessible (e.g. it&#8217;s a weather server you want people to be able to easily find) and the other web server is for a personal project. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":8,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":8,\"nbrPlacementsScanned\":8,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":1004} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":9,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":9,\"nbrPlacementsScanned\":8,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :74.615384615385%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_722_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"485\" loading=\"lazy\" decoding=\"async\" alt=\"External Ports can be forwarded to different internal ports. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_722_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774675_722_How-to-Port-Forward-on-Your-Router.png?resize=650%2C485&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":9,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":9,\"nbrPlacementsScanned\":9,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":240} --><\/p>\n<p> When you access your home network from the public-facing port\u00a080, you can tell your router to send it to port 80 on the weather server at 192.168.1.150, where it will be listening at port 80. But, you can tell your router that when you access it via port 10,000, that it should go to port 80 on your personal server, 192.168.1.250. This way, the second computer doesn&#8217;t have to be reconfigured to use a different port, but you can still manage traffic effectively &#8212; and at the same time by leaving the first web server linked to port 80 you make it easier for people accessing your aforementioned weather server project. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":9,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":9,\"nbrPlacementsScanned\":9,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":865} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":865,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":35,\"nextBlockCount\":192,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1057} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":9,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":9,\"nbrPlacementsScanned\":9,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":10,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":10,\"nbrPlacementsScanned\":9,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> Now that we know what port forwarding is and why we might want to use it, lets&#8217; take a look at some small considerations regarding port forwarding before diving into actually configuring it. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":10,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":10,\"nbrPlacementsScanned\":10,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":157} --><\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":10,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":10,\"nbrPlacementsScanned\":10,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":157} --><\/p>\n<h2 id=\"considerations-before-configuring-your-router\"><span class=\"ez-toc-section\" id=\"Considerations_Before_Configuring_Your_Router\"><\/span> Considerations Before Configuring Your Router <span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p> There are a few things to keep in mind before sitting down to configure your router and running through them in advance is guaranteed to cut down on frustration. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":10,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":10,\"nbrPlacementsScanned\":10,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":320} --><\/p>\n<h3 id=\"set-static-ip-address-for-your-devices\"><span class=\"ez-toc-section\" id=\"Set_Static_IP_Address_for_Your_Devices\"><\/span> Set Static IP Address for Your Devices <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> First and foremost, all your port forwarding rules will fall apart if you&#8217;re assigning them to devices with dynamic IP addresses assigned by your router&#8217;s DHCP service. We dig into the details of what DHCP is in this article on DHCP vs. static IP address assignments, but we&#8217;ll give you the quick summary here. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":10,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":10,\"nbrPlacementsScanned\":10,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":632} --><\/p>\n<p> <span class=\"related-single\">Related: How to Set Up Static DHCP So Your Computer&#8217;s IP Address Doesn&#8217;t Change<\/span> <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":10,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":10,\"nbrPlacementsScanned\":10,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":713} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":713,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":187,\"nextBlockCount\":440,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1153} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":10,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":10,\"nbrPlacementsScanned\":10,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":11,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":11,\"nbrPlacementsScanned\":10,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> Your router has a pool of addresses that it reserves just for handing out to devices as they join and leave the network. Think of it like getting a number at a diner when you arrive &#8212; your laptop joins, boom, it gets IP address 192.168.1.98. Your iPhone joins, boom, it gets address 192.168.1.99. If you take those devices offline for a period of time or the router is rebooted, then the whole IP address lottery happens all over again. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":11,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":11,\"nbrPlacementsScanned\":11,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":253} --><\/p>\n<p> Under normal circumstances this is more than fine. Your iPhone doesn&#8217;t care which internal IP address it has. But\u00a0if you&#8217;ve created a port forwarding rule that says your game server is at a certain IP address and then the router gives it a new one, that rule won&#8217;t work, and\u00a0nobody will be able to connect to your game server. In order to avoid that, you need to assign a static IP address to each network device you&#8217;re assigning a port forwarding rule to. The best way to do that is through your router. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":11,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":11,\"nbrPlacementsScanned\":11,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":761} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":761,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":139,\"nextBlockCount\":617,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1378} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":11,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":11,\"nbrPlacementsScanned\":11,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":12,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":12,\"nbrPlacementsScanned\":11,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<h3 id=\"know-your-ip-address-and-set-a-dynamic-dns-address\"><span class=\"ez-toc-section\" id=\"Know_Your_IP_Address_and_Set_a_Dynamic_DNS_Address\"><\/span> Know Your IP Address (and Set a Dynamic DNS Address) <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> In addition to using static IP assignments for the relevant devices inside your network, you also want to be aware of your external IP address &#8212; you can find it by visiting <a rel=\"nofollow noopener\" target=\"_blank\" href=\"http:\/\/www.whatismyip.com\/\">whatismyip.com<\/a>\u00a0while on your home network. Although its possible you might have the same public IP address for months or even over a year, your public IP address can change (unless your internet service provider has explicitly given you a static public-facing IP address). In other words, you can&#8217;t rely on typing in your numeric IP address into whatever remote tool you&#8217;re using (and you can&#8217;t rely on giving that IP address to a friend). <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":12,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":12,\"nbrPlacementsScanned\":12,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":478} --><\/p>\n<p> <span class=\"related-single\">Related: What Is Dynamic DNS (DDNS), and How Do You Set It Up?<\/span> <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":12,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":12,\"nbrPlacementsScanned\":12,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":542} --><\/p>\n<p> Now, while you could go through the hassle of manually checking that IP address each time you leave the house and intend to work away from home (or every time your friend is going to connect to your Minecraft server or the like), that&#8217;s a big headache. Instead, we highly recommend you set up a Dynamic DNS service which will allow you to link your (changing) home IP address to a memorable address like mysuperawesomeshomeserver.dynu.net. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":12,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":12,\"nbrPlacementsScanned\":12,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":983} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":13,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":13,\"nbrPlacementsScanned\":12,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<h3 id=\"pay-attention-to-local-firewalls\"><span class=\"ez-toc-section\" id=\"Pay_Attention_to_Local_Firewalls\"><\/span> Pay Attention to Local Firewalls <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> Once you set up the port forwarding on the router level, there is a possibility that you may need to tweak firewall rules on your computer too. For example, we&#8217;ve gotten a lot of emails over the years from frustrated parents setting up port forwarding so their kids can play Minecraft with their friends. In almost every case, the problem is that despite setting up the port forwarding rules on the router correctly, somebody ignored the Windows firewall request asking if it it was OK if the Java platform (that runs Minecraft) could access the greater internet. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":13,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":13,\"nbrPlacementsScanned\":13,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":565} --><\/p>\n<p> Be aware that on computers running local firewall and\/or anti-virus software that includes firewall protection, you&#8217;ll likely need to confirm the connection you&#8217;ve set up is okay. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":13,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":13,\"nbrPlacementsScanned\":13,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":746} --><\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":13,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":13,\"nbrPlacementsScanned\":13,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":746} --><\/p>\n<h2 id=\"how-to-set-up-port-forwarding-on-your-router\"><span class=\"ez-toc-section\" id=\"How_to_Set_Up_Port_Forwarding_on_Your_Router\"><\/span> How to Set Up Port Forwarding on Your Router <span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p> You can configure port forwarding on your router. Now that you know the basics, it&#8217;s pretty simple. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":13,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":13,\"nbrPlacementsScanned\":13,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":847} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":847,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":53,\"nextBlockCount\":228,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1075} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":13,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":13,\"nbrPlacementsScanned\":13,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":14,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":14,\"nbrPlacementsScanned\":13,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> As much as we&#8217;d love to provide exact instructions for the precise model of router you own, the reality is that every router manufacturer has their own software, and how that software looks can even vary between router models. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":14,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":14,\"nbrPlacementsScanned\":14,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":175} --><\/p>\n<p> In general, you&#8217;re going to be looking for something called &#8212; you guessed it &#8212;&#8220;Port Forwarding&#8221;. You may have to look through the different categories to find it, but if your router is any good, it should be there. Most routers also offer apps, in addition to any desktop software or interfaces they have. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":14,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":14,\"nbrPlacementsScanned\":14,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":486} --><\/p>\n<h3 id=\"step-one-locate-the-port-forwarding-rules-on-your-router\"><span class=\"ez-toc-section\" id=\"Step_One_Locate_the_Port_Forwarding_Rules_on_Your_Router\"><\/span> Step One: Locate the Port Forwarding Rules on Your Router <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> Rather than attempt to capture every variation, we&#8217;ll highlight a few to give you an idea what the menu looks like and encourage you to look up the manual or online help files for your particular router to find the specifics. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":14,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":14,\"nbrPlacementsScanned\":14,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":713} --><\/p>\n<p> For comparison, here&#8217;s what the port forwarding menu looks like for the xFi Gateway in the Xfinity app: <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":14,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":14,\"nbrPlacementsScanned\":14,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":818} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":818,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":82,\"nextBlockCount\":240,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1058} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":14,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":14,\"nbrPlacementsScanned\":14,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":15,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":15,\"nbrPlacementsScanned\":14,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<div class=\"body-img portrait \">\n<div class=\"responsive-img image-expandable img-article-item-portrait\" :196.07843137255%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_256_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"255\" height=\"500\" loading=\"lazy\" decoding=\"async\" alt=\"xFi Router port forwarding image. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_256_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_256_How-to-Port-Forward-on-Your-Router.png?resize=255%2C500&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":15,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":15,\"nbrPlacementsScanned\":15,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":158} --><\/p>\n<p> And here&#8217;s what the port forwarding menu looks like on a\u00a0D-Link DIR-890L running the popular third-party DD-WRT firmware: <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":15,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":15,\"nbrPlacementsScanned\":15,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":282} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :46%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_141_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"299\" loading=\"lazy\" decoding=\"async\" alt=\"The dd-wrt port forwarding control panel. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_141_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_141_How-to-Port-Forward-on-Your-Router.png?resize=650%2C299&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":15,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":15,\"nbrPlacementsScanned\":15,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":522} --><\/p>\n<p> As you can see, the complexity between the two views varies greatly. In addition, the location is completely different within the menus. As such it&#8217;s most useful if you look up the exact instructions for your device using the manual or a search query. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":15,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":15,\"nbrPlacementsScanned\":15,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":775} --><\/p>\n<p> Once you&#8217;ve located the menu it&#8217;s time to set up the actual rule. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":15,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":15,\"nbrPlacementsScanned\":15,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":842} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":842,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":58,\"nextBlockCount\":406,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1248} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":15,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":15,\"nbrPlacementsScanned\":15,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":16,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":16,\"nbrPlacementsScanned\":15,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<h3 id=\"step-two-create-a-port-forwarding-rule\"><span class=\"ez-toc-section\" id=\"Step_Two_Create_a_Port_Forwarding_Rule\"><\/span> Step Two: Create a Port Forwarding Rule <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> After learning all about port forwarding, setting up a dynamic DNS for your home IP address, and all the other work that went into this, the important step &#8212; creating the actual rule &#8212; is pretty much a walk in the park. In the port forwarding menu on our router, we&#8217;re going to create two new port forwarding rules: one for the Subsonic music server and one for a new Minecraft server we just set up. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":16,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":16,\"nbrPlacementsScanned\":16,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":348} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :26.307692307692%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_118_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"171\" loading=\"lazy\" decoding=\"async\" alt=\"Minecraft and Subsonic port forwarding examples. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_118_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_118_How-to-Port-Forward-on-Your-Router.png?resize=650%2C171&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":16,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":16,\"nbrPlacementsScanned\":16,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":588} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":588,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":312,\"nextBlockCount\":708,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1296} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":16,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":16,\"nbrPlacementsScanned\":16,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":17,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":17,\"nbrPlacementsScanned\":16,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> Despite the differences in location on different router software, the general input is the same. Almost universally, you&#8217;ll name the port forwarding rule. It&#8217;s best to simply name it what the server or service is and then append it if need be for clarity (e.g. &#8220;Webserver&#8221; or &#8220;Webserver-Weather&#8221; if there is more than one). Remember the TCP\/UDP protocol we talked about at the beginning? You&#8217;ll also need to specify TCP, UDP, or Both. Some people are very militant about finding out exactly what protocol every application and service uses and matching things up perfectly for security purposes. We&#8217;ll be the first to admit that we&#8217;re lazy in this regard and we almost always just pick &#8220;Both&#8221; to save time. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":17,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":17,\"nbrPlacementsScanned\":17,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":396} --><\/p>\n<p> Some router firmware, including the more advanced DD-WRT we&#8217;re using in the screenshot above, will allow you to specify a &#8220;Source&#8221; value which is list of IP addresses you&#8217;re restricting the port forward to for security purposes. You can use this feature if you wish, but be forewarned it introduces a whole new host of headaches as it presumes that remote users (including you when you&#8217;re away from home and friends who are connecting in) have static IP addresses. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":17,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":17,\"nbrPlacementsScanned\":17,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":862} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":862,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":38,\"nextBlockCount\":610,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1472} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":17,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":17,\"nbrPlacementsScanned\":17,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":18,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":18,\"nbrPlacementsScanned\":17,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> Next you&#8217;ll need to put in the external port. This is the port that will be open on the router and facing the internet. You can use any number you want here between 1 and 65353, but practically most of the lower numbers are taken up by standard services (like email and web servers) and many of the higher numbers are assigned to fairly common applications. With that in mind, we&#8217;d recommend picking a number above 5,000 and, to be extra safe, using Ctrl+F to search this <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/en.wikipedia.org\/wiki\/List_of_TCP_and_UDP_port_numbers\">long list of TCP\/UDP port numbers<\/a> to make sure you&#8217;re not selecting a port that conflicts with an existing service you&#8217;re already using. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":18,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":18,\"nbrPlacementsScanned\":18,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":572} --><\/p>\n<p> Finally, put in the internal IP address of the device, the port you on that device, and (if applicable) toggle the rule on. Don&#8217;t forget to save the settings. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":18,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":18,\"nbrPlacementsScanned\":18,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":732} --><\/p>\n<h3 id=\"step-three-test-your-port-forwarding-rule\"><span class=\"ez-toc-section\" id=\"Step_Three_Test_Your_Port_Forwarding_Rule\"><\/span> Step Three: Test\u00a0Your Port Forwarding Rule <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> The most obvious way to check if your port forward worked is to connect using the routine intended for the port (e.g. have your friend connect their Minecraft client to your home server), but that&#8217;s not always an immediately available solution if you&#8217;re not away from home. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":18,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":18,\"nbrPlacementsScanned\":18,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":1007} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":19,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":19,\"nbrPlacementsScanned\":18,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<p> Thankfully, there&#8217;s a handy little port checker available online at <a rel=\"nofollow noopener\" target=\"_blank\" href=\"http:\/\/www.yougetsignal.com\/\">YouGetSignal.com<\/a>. We can test to see if our Minecraft server port forward took simply by having the port tester try to connect to it. Plug in your IP address and the port number and click &#8220;Check&#8221;. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":19,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":19,\"nbrPlacementsScanned\":19,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":266} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :46.769230769231%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_784_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"304\" loading=\"lazy\" decoding=\"async\" alt=\"A port forwarding test utility. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_784_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_784_How-to-Port-Forward-on-Your-Router.png?resize=650%2C304&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":19,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":19,\"nbrPlacementsScanned\":19,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":506} --><\/p>\n<p> You should receive a message, as seen above, like &#8220;Port X is open on (Your IP)&#8221;. If the port is reported as closed, double check both the settings in the port forwarding menu on your router and your IP and port data in the tester. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":19,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":19,\"nbrPlacementsScanned\":19,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":738} --><\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":19,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":19,\"nbrPlacementsScanned\":19,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":738} --><\/p>\n<h2 id=\"xfinity-port-forwarding-with-an-xfi-gateway\"><span class=\"ez-toc-section\" id=\"Xfinity_Port_Forwarding_With_an_xFi_Gateway\"><\/span> Xfinity Port Forwarding With an xFi Gateway <span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p> Unfortunately, you can&#8217;t do everything in one place anymore if you&#8217;ve got an xFi Gateway. Xfinity has moved port forwarding rules to the Xfinity app, but you must use the web interface to assign a static IP address. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":19,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":19,\"nbrPlacementsScanned\":19,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":955} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":19,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<p> Log in to your xFi gateway by entering the Gateway&#8217;s address into your web browser. Typically, the address will be 10.0.0.1 or 192.168.0.1, but that isn&#8217;t guaranteed. You can always find your modem or router&#8217;s IP address manually if one of those two addresses don&#8217;t work. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":273} --><\/p>\n<p> Once you log in, head to Connected Devices, look for your server on the list, then click &#8220;Edit.&#8221; <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":371} --><\/p>\n<div class=\"body-img portrait \">\n<div class=\"responsive-img image-expandable img-article-item-portrait\" :129.19896640827%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_272_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"387\" height=\"500\" loading=\"lazy\" decoding=\"async\" alt=\"Devices detected by the xFi gateway on the network. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_272_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_272_How-to-Port-Forward-on-Your-Router.png?resize=387%2C500&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":611} --><\/p>\n<p> Tick &#8220;Reserved IP,&#8221; then click &#8220;Save.&#8221; <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":651} --><\/p>\n<section class=\"emaki-custom-block emaki-custom-tip\">\n<div class=\"emaki-custom tip\" id=\"custom_block_72\">\n<div class=\"custom_block-content tip\">\n<p> If you find it easier to remember, you can set a custom IP address, but you&#8217;re limited to changing the last three digits to a number between 2 and 255. <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":891} --><\/section>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":891} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":891,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":9,\"nextBlockCount\":240,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1131} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":20,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":20,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":21,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":21,\"nbrPlacementsScanned\":20,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<div class=\"body-img landscape \">\n<div class=\"responsive-img image-expandable img-article-item\" :54.923076923077%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_73_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"650\" height=\"357\" loading=\"lazy\" decoding=\"async\" alt=\"Tick &quot;Reserved IP&quot; then click &quot;Save.&quot;\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_73_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_73_How-to-Port-Forward-on-Your-Router.png?resize=650%2C357&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":21,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":21,\"nbrPlacementsScanned\":21,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":231} --><\/p>\n<p> We&#8217;ve now ensured that the rule will remain applied to the correct device. Next, download the Xfinity app from the Google Play Store or the Apple Store. It is the only way to port forward using an Xfinity xFi Gateway. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":21,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":21,\"nbrPlacementsScanned\":21,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":450} --><\/p>\n<p> Open the app, sign in if prompted, then navigate to Connect &gt; (Your Wi-Fi Network Name) &gt; Advanced Settings &gt; Port Forwarding, and tap, &#8220;Add Port Forward.&#8221; <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":21,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":21,\"nbrPlacementsScanned\":21,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":616} --><\/p>\n<div class=\"body-img portrait \">\n<div class=\"responsive-img image-expandable img-article-item-portrait\" :181.15942028986%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774677_265_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"276\" height=\"500\" loading=\"lazy\" decoding=\"async\" alt=\"Click &quot;Add Port Forward.&quot;\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774677_265_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774677_265_How-to-Port-Forward-on-Your-Router.png?resize=276%2C500&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":21,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":21,\"nbrPlacementsScanned\":21,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":856} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":856,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":44,\"nextBlockCount\":174,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1030} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":21,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":21,\"nbrPlacementsScanned\":21,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":22,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":22,\"nbrPlacementsScanned\":21,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> Select the device or local IP you&#8217;d like to make a rule for, then pick a port and select between TCP, UDP, or TCP\/UDP. Then tap &#8220;Next&#8221; to finalize the port forwarding rule. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":22,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":22,\"nbrPlacementsScanned\":22,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":130} --><\/p>\n<div class=\"body-img portrait \">\n<div class=\"responsive-img image-expandable img-article-item-portrait\" :196.07843137255%\" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_256_How-to-Port-Forward-on-Your-Router.png\" data-modal-id=\"single-image-modal\" data-modal-container-id=\"single-image-modal-container\" data-img-caption=\"&quot;&quot;\">\n<figure><picture><source media=\"(min-width: 1024px)\" data- \/><source media=\"(min-width: 768px)\" data- \/><source media=\"(min-width: 481px)\" data- \/><source media=\"(min-width: 0px)\" data- \/><img data-recalc-dims=\"1\" width=\"255\" height=\"500\" loading=\"lazy\" decoding=\"async\" alt=\"xFi Router port forwarding image. \" data-img-url=\"https:\/\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_256_How-to-Port-Forward-on-Your-Router.png\" src=\"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/1724774676_256_How-to-Port-Forward-on-Your-Router.png?resize=255%2C500&#038;ssl=1\" style=\"display:block;height:auto;max-width:100%;\" title=\"\"> <\/picture> <\/figure>\n<\/p><\/div>\n<\/p><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":22,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":22,\"nbrPlacementsScanned\":22,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":370} --><\/p>\n<p> That&#8217;s it &#8212; you&#8217;re done. Your service should be on the internet. Just make sure that the firewall on the server itself allows for connections on that port. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":22,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":22,\"nbrPlacementsScanned\":22,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":529} --><\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":22,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":22,\"nbrPlacementsScanned\":22,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":529} --><\/p>\n<h2 id=\"common-applications-for-port-forwarding\"><span class=\"ez-toc-section\" id=\"Common_Applications_for_Port_Forwarding\"><\/span> Common Applications for Port Forwarding <span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p> There are as many applications for port forwarding as there are ports, but most of the time you&#8217;ll use it for setting up remote access, a game server, or a media server. Many people need to port forward for a Minecraft server, or to set up SSH port forwarding. Here is a quick reference chart for some of the most popular applications in those categories. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":22,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":22,\"nbrPlacementsScanned\":22,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":886} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":886,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":14,\"nextBlockCount\":560,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1446} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":22,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":22,\"nbrPlacementsScanned\":22,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":23,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":23,\"nbrPlacementsScanned\":22,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<div class=\"table-container\">\n<table border=\"1\" cellpadding=\"1\" cellspacing=\"1\" style=\"border-collapse: collapse; width: 63.1424%; height: 139px;\" align=\"\" summary=\"\">\n<tbody>\n<tr style=\"height:20px;\">\n<td style=\"width:25.7894%;height:20px;\">\n<p> <strong>Application<\/strong> <\/p>\n<\/td>\n<td style=\"width:16.3158%;height:20px;\">\n<p> <strong>Ports<\/strong> <\/p>\n<\/td>\n<td style=\"width:21.0386%;height:20px;\">\n<p> <strong>Protocol<\/strong> <\/p>\n<\/td>\n<\/tr>\n<tr style=\"height:20px;\">\n<td style=\"width:25.7894%;height:20px;\">\n<p> Minecraft (Java) <\/p>\n<\/td>\n<td style=\"width:16.3158%;height:20px;\">\n<p> 25565 <\/p>\n<\/td>\n<td style=\"width:21.0386%;height:20px;\">\n<p> TCP\/UDP <\/p>\n<\/td>\n<\/tr>\n<tr style=\"height:19px;\">\n<td style=\"width:25.7894%;height:19px;\">\n<p> Minecraft (Bedrock) <\/p>\n<\/td>\n<td style=\"width:16.3158%;height:19px;\">\n<p> 19132-19133 <\/p>\n<\/td>\n<td style=\"width:21.0386%;height:19px;\">\n<p> TCP\/UDP <\/p>\n<\/td>\n<\/tr>\n<tr style=\"height:20px;\">\n<td style=\"width:25.7894%;height:20px;\">\n<p> Project Zomboid (PZ) <\/p>\n<\/td>\n<td style=\"width:16.3158%;height:20px;\">\n<p> 16261-16262 <\/p>\n<\/td>\n<td style=\"width:21.0386%;height:20px;\">\n<p> TCP\/UDP <\/p>\n<\/td>\n<\/tr>\n<tr style=\"height:20px;\">\n<td style=\"width:25.7894%;height:20px;\">\n<p> VNC <\/p>\n<\/td>\n<td style=\"width:16.3158%;height:20px;\">\n<p> 5900 <\/p>\n<\/td>\n<td style=\"width:21.0386%;height:20px;\">\n<p> TCP <\/p>\n<\/td>\n<\/tr>\n<tr style=\"height:20px;\">\n<td style=\"width:25.7894%;height:20px;\">\n<p> SSH <\/p>\n<\/td>\n<td style=\"width:16.3158%;height:20px;\">\n<p> 22 <\/p>\n<\/td>\n<td style=\"width:21.0386%;height:20px;\">\n<p> TCP <\/p>\n<\/td>\n<\/tr>\n<tr style=\"height:20px;\">\n<td style=\"width:25.7894%;height:20px;\">\n<p> Plex Media Server <\/p>\n<\/td>\n<td style=\"width:16.3158%;height:20px;\">\n<p> 32400 <\/p>\n<\/td>\n<td style=\"width:21.0386%;height:20px;\">\n<p> TCP <\/p>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":23,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":23,\"nbrPlacementsScanned\":23,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":546} --><\/p>\n<p> It is important to note that SSH uses port 22, and that port is specifically reserved for that use. Other applications (like Minecraft) have staked out such a strong claim they have functionally reserved their ports, though there isn&#8217;t anything officially requiring it. You may occasionally find that you have multiple things trying to use the same port. Remember, there are literally tens of thousands of different ports freely available to use, so just pick another one and use that instead. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":23,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":23,\"nbrPlacementsScanned\":23,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":1041} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":24,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":24,\"nbrPlacementsScanned\":23,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<p> But before you go opening up all sorts of ports, hosting every single service you can imagine, take some time to review your security practices. Most are fairly simple to get started with, and they can save you a huge headache later. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":24,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":24,\"nbrPlacementsScanned\":24,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":235} --><\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":24,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":24,\"nbrPlacementsScanned\":24,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":235} --><\/p>\n<h2 id=\"security-precautions-for-port-forwarding\"><span class=\"ez-toc-section\" id=\"Security_Precautions_for_Port_Forwarding\"><\/span> Security Precautions for Port Forwarding <span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p> If you&#8217;re port forwarding, you obviously intend for something to be accessible from the Internet. Any time you open up a port you increase your &#8220;attack surface.&#8221; It is always best to take some preventative measures to mitigate your risk. This isn&#8217;t an exhaustive list of things you can do to protect yourself &#8212; for that we&#8217;d need to write multiple novels &#8212; but it is a place to start. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":24,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":24,\"nbrPlacementsScanned\":24,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":625} --><\/p>\n<h3 id=\"don-t-run-servers-as-admin-or-root\"><span class=\"ez-toc-section\" id=\"Dont_Run_Servers_As_Admin_or_Root\"><\/span> Don&#8217;t Run Servers As Admin or Root <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> It doesn&#8217;t matter if you&#8217;re hosting a server on Windows, Linux, or any other operating system. Do not use the administrator or root account to host things that are exposed to the Internet. The administrative or root accounts have few (if any) restrictions placed on them. They can perform any operation on your system. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":24,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":24,\"nbrPlacementsScanned\":24,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":945} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":25,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":25,\"nbrPlacementsScanned\":24,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<p> If there is some problem with the service you&#8217;re running &#8212; like a misconfiguration, bug, or an exploit &#8212; administrative or root access dramatically increases the amount of damage that can be done by a malicious attacker. It may even allow someone to compromise other devices attached to your network. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":25,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":25,\"nbrPlacementsScanned\":25,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":306} --><\/p>\n<p> If you use a regular account you&#8217;re much less vulnerable &#8212; any attacker that gains access to your system will probably also need some kind of privilege escalation exploit to really cause harm. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":25,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":25,\"nbrPlacementsScanned\":25,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":502} --><\/p>\n<h3 id=\"disable-root-login-over-ssh\"><span class=\"ez-toc-section\" id=\"Disable_Root_Login_Over_SSH\"><\/span> Disable Root Login Over SSH <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> If you&#8217;re hosting on Linux, you should completely disable root login over SSH. The root user has unlimited access to everything on the system, which makes it a tempting target for would-be evildoers. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":25,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":25,\"nbrPlacementsScanned\":25,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":703} --><\/p>\n<p> Additionally, there is really nothing to be gained by using it, since sudo allows users to execute commands as if they were the root user. Sudo permissions can even be modified on a user-by-user basis, so if you wanted to create a more restricted sudo account to perform basic server administration you could. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":25,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":25,\"nbrPlacementsScanned\":25,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":1014} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":26,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":26,\"nbrPlacementsScanned\":25,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<h3 id=\"you-can-change-your-ports-but-don-t-rely-on-it\"><span class=\"ez-toc-section\" id=\"You_Can_Change_Your_Ports_But_Dont_Rely_On_It\"><\/span> You Can Change Your Ports, But Don&#8217;t Rely On It <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> You&#8217;ll sometimes encounter the suggestion that you shouldn&#8217;t use the default ports for anything you&#8217;re hosting. The idea behind this is simple: If someone is scanning IP blocks for specific open ports they want to target, changing the port might reduce the chances that someone will attempt to access your server. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":26,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":26,\"nbrPlacementsScanned\":26,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":315} --><\/p>\n<p> For example, you could change the SSH port from 22 to something like 7281. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":26,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":26,\"nbrPlacementsScanned\":26,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":391} --><\/p>\n<p> Is that effective? Only sorta &#8212; it&#8217;ll certainly reduce the number of automated hits you take from script kiddies (amateur would-be hackers that use prebuilt software or scripts), and there will subsequently be fewer things in your logs to review. However, it won&#8217;t do anything to deter a serious targeted attack by someone knowledgeable. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":26,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":26,\"nbrPlacementsScanned\":26,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":732} --><\/p>\n<p> Security through obscurity isn&#8217;t a guarantee, and you should\u00a0<strong>never\u00a0<\/strong>rely on it to keep your system safe. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":26,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":26,\"nbrPlacementsScanned\":26,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":839} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":839,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":61,\"nextBlockCount\":343,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1182} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":26,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":26,\"nbrPlacementsScanned\":26,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":27,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":27,\"nbrPlacementsScanned\":26,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<h3 id=\"install-fail2ban-on-linux-servers\"><span class=\"ez-toc-section\" id=\"Install_Fail2Ban_on_Linux_Servers\"><\/span> Install Fail2Ban on Linux Servers <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.fail2ban.org\/\">Fail2Ban<\/a> is software designed to help secure your server against brute-force attacks. Fail2Ban can be configured to automatically reject connection attempts from any IP address that has tried and failed to log in to your server a certain number of times. Attackers can&#8217;t attempt to guess passwords more than a few times without being banned. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":27,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":27,\"nbrPlacementsScanned\":27,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":282} --><\/p>\n<p> Fail2Ban can be set up with more complex behaviors too, so it is well worth learning if you plan on hosting on Linux. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":27,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":27,\"nbrPlacementsScanned\":27,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":401} --><\/p>\n<h3 id=\"use-security-keys-for-ssh-whenever-possible\"><span class=\"ez-toc-section\" id=\"Use_Security_Keys_For_SSH_Whenever_Possible\"><\/span> Use Security Keys For SSH Whenever Possible <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> You should always pick a strong password for your administrative or root account, and any other account that you&#8217;ll log in to remotely. Fail2Ban and any other security measures you might enact will try to stop brute-force attacks, but they could fail. Use the strongest password possible. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":27,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":27,\"nbrPlacementsScanned\":27,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":691} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":691,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":209,\"nextBlockCount\":445,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1136} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":27,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":27,\"nbrPlacementsScanned\":27,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":28,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":28,\"nbrPlacementsScanned\":27,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<p> If you&#8217;re using SSH, consider using SSH keys instead of a password. SSH keys are an example of public key cryptography &#8212; keys are generated in pairs, one public, and one private. The public key is placed on the computer that you&#8217;ll be remotely connecting to. You keep the other member of the pair, the private key, on your computer. When you try to connect, your private key is checked against the key on the server to provide authorization. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":28,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":28,\"nbrPlacementsScanned\":28,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":236} --><\/p>\n<p> Windows, Linux, and MacOS all support SSH keys, so there isn&#8217;t much reason not to use them. SSH keys are more secure, and &#8212; once setup &#8212; every bit as convenient as a password. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":28,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":28,\"nbrPlacementsScanned\":28,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":417} --><\/p>\n<h3 id=\"only-allow-connections-from-whitelisted-addresses\"><span class=\"ez-toc-section\" id=\"Only_Allow_Connections_from_Whitelisted_Addresses\"><\/span> Only Allow Connections from Whitelisted Addresses <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> You can also improve your security by limiting the connections that are allowed to your server. There are two basic ways to do this: a whitelist and a blacklist. A blacklist prohibits connections from specific people or applications. For example, if you know a hacker was attacking your Minecraft server, you might add their IP to a blacklist so it is always rejected. Alternatively, you can use a whitelist, which works the opposite way. Whitelists only allow pre-approved connections, and they can often be restricted to only allow access to a specific application or a specific port. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":28,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":28,\"nbrPlacementsScanned\":28,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":1005} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":29,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":29,\"nbrPlacementsScanned\":28,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<p> On Linux, use Universal Firewall (UFW) or FirewallD to create an OS-level whitelist. You can use whichever you prefer, though Debian distros (like Ubuntu) typically come with UFW, and RHEL distros (like Fedora) typically come with FirewallD. On Windows, open Windows Firewall and go to the &#8220;Inbound Traffic&#8221; tab to create a whitelist. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":29,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":29,\"nbrPlacementsScanned\":29,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":336} --><\/p>\n<p> Individual applications you might host also often come with built-in whitelist functionality, as well. For example, you can add an IP to a Minecraft Server&#8217;s whitelist by modifying whitelist.json in the main server directory. The process varies significantly between applications though, and you&#8217;ll need to check your application&#8217;s documentation for the details. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":29,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":29,\"nbrPlacementsScanned\":29,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":700} --><\/p>\n<p> <span class=\"related-single\">Related: The Best Linux Distributions for Beginners<\/span> <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":29,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":29,\"nbrPlacementsScanned\":29,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":753} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":true,\"currentRuleCount\":900,\"actualCount\":753,\"hasActualCountMetThreshold\":true,\"countRemainingForInjection\":147,\"nextBlockCount\":321,\"hasCountRemainingForInjectionMetThreshold\":true,\"nextCount\":1074} --><\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":29,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":29,\"nbrPlacementsScanned\":29,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":900} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":30,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":30,\"nbrPlacementsScanned\":29,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":true,\"actualCount\":0} --><\/p>\n<h3 id=\"consider-separating-your-local-area-network-with-a-vlans\"><span class=\"ez-toc-section\" id=\"Consider_Separating_Your_Local_Area_Network_With_a_VLANs\"><\/span> Consider Separating Your Local Area Network With a VLANs <span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p> Your home local area network (LAN) is typically a bit of a free-for-all. There is much less security between devices on a LAN than between a device on the Internet and a device on the LAN. The general assumption is that devices attached to your LAN are trusted devices, and that they don&#8217;t pose much of a security risk. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":30,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":30,\"nbrPlacementsScanned\":30,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":174} --><\/p>\n<p> If you&#8217;re hosting an internet-facing service, however, that is not a safe assumption. If there is a fault in the service you&#8217;re hosting, or your other security practices, it is possible that an attacker can compromise your server and through it gain access to other devices on your local area network. It is potentially a huge security breach. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":30,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":30,\"nbrPlacementsScanned\":30,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":519} --><\/p>\n<p> One solution is a Virtual LAN, or VLAN. A VLAN is a separate virtual local area network that is isolated &#8212; through software &#8212; from the &#8220;real&#8221; LAN that all of your other devices are on. You can limit exactly what kind of traffic is allowed to pass between the VLAN containing your internet-facing server and the VLAN that all of your normal devices are on. This creates a pretty effective barrier between your server and your other devices should a malicious attacker compromise your server. Setting up a VLAN can be a bit complicated, and the details will vary depending on your hardware. Not all consumer routers support VLANs either, so if you don&#8217;t see it, it probably isn&#8217;t there. <\/p>\n<p><!-- Repeatable debug data: {\"injection\":\"before\",\"adPosition\":30,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":30,\"nbrPlacementsScanned\":30,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":1209} --><!-- Zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"after\",\"adPosition\":31,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":31,\"nbrPlacementsScanned\":30,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"isEarlyInjection\":false,\"actualCount\":0} --><br \/>\n<!-- Repeatable debug data: {\"isEarlyInjection\":false,\"currentRuleCount\":900,\"actualCount\":0,\"hasActualCountMetThreshold\":null,\"countRemainingForInjection\":null,\"nextBlockCount\":null,\"hasCountRemainingForInjectionMetThreshold\":null} --><\/p>\n<p> If your router doesn&#8217;t support VLANs, you have a few options. You can buy a new router that does support them, or you can add a <strong>managed<\/strong> network switch. <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.bhphotovideo.com\/c\/product\/1062947-REG\/tp_link_tl_sg108e_8_port_gigabit_easy.html\/BI\/22163\/KBID\/28708\/SID\/UUhtgUeUpU223640\" class=\"norewrite noskim\">Managed network switches start at about $30<\/a>, so they&#8217;re probably the least expensive way to set up a VLAN at home if your current hardware doesn&#8217;t support it. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":31,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":31,\"nbrPlacementsScanned\":31,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":312} --><\/p>\n<p> It&#8217;s a wee bit of a hassle to set up port forwarding, but as long as you assign a static IP address to the target device and set up a dynamic DNS server for your home IP address, it&#8217;s a task you only need to visit once to enjoy hassle free access to your network in the future. <\/p>\n<p><!-- No repeatable ad for zone: character count repeatable. --><!-- Repeatable debug data: {\"injection\":\"none\",\"adPosition\":31,\"startingPoint\":0,\"skipEvery\":null,\"nbrPlacementFilledEachSkip\":31,\"nbrPlacementsScanned\":31,\"ruleCount\":900,\"degradationStartingPoint\":1,\"stopAds\":null,\"actualCount\":591} -->\n <\/div>\n","protected":false},"excerpt":{"rendered":"<p>Key Takeaways To forward a port on your router, log into your router, find the &#8220;Port Forwarding&#8221; section, and then create a rule applying to the device you&#8217;re using to host. You should also assign a static IP address to the host computer. Although modern Wi-Fi routers handle most functions automatically, some applications will require &#8230; <a title=\"How to Port Forward on Your Router\" class=\"read-more\" href=\"https:\/\/goodwriterz.com\/site\/how-to-port-forward-on-your-router\/\" aria-label=\"Read more about How to Port Forward on Your Router\">\u0625\u0642\u0631\u0623 \u0627\u0644\u0645\u0632\u064a\u062f<\/a><\/p>\n","protected":false},"author":1,"featured_media":9106,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[14],"tags":[322,95,615],"class_list":["post-9105","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-wifi-routers","tag-features","tag-hardware","tag-mobile"],"jetpack_featured_media_url":"https:\/\/i0.wp.com\/goodwriterz.com\/site\/wp-content\/uploads\/2024\/08\/How-to-Port-Forward-on-Your-Router.jpg?fit=1200%2C675&ssl=1","jetpack_sharing_enabled":true,"jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/posts\/9105","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/comments?post=9105"}],"version-history":[{"count":0,"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/posts\/9105\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/media\/9106"}],"wp:attachment":[{"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/media?parent=9105"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/categories?post=9105"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/goodwriterz.com\/site\/wp-json\/wp\/v2\/tags?post=9105"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}