Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 31 replies
  • Answers 2 answers
  • Subscribers 34 subscribers
  • Views 145042 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Port Forwarding Xbox Live Services to Xbox One Results 'Strict NAT'.

ChrisLynch

Happy New Year everyone.

I have 2 Business Rules setup on my brand new Sophos XG firewall (Firmware 15.01.0):

 

However, when I do various tests on my Xbox One, it always shows as "NAT Type: Strict".

The UDP Ports are 88, 500, 3074, 3544 and 4500.  TCP Ports are 88 and 3074.

I really wish Sophos would add uPNP support for situations like this.  Yes, I'm fully aware of the security implications of uPNP, but for home users (especially with multiple Xbox's like me), setting up Port Forwarding isn't a fun thing to do.

Am I missing something here?



This thread was automatically locked due to age.
Parents
  • 0
    Chris I respectfully disagree with you, Sophos should never add 'UPnP' for reasons you already said. " I'm fully aware of the security implications of uPNP".

    Moving forward you don't need to do any 'port forwarding' for XBox to work in fact this setup would not work if you have multiple XBox consoles in the house. All you need to do is create a IP Host for the gaming boxes then create a new policy at the top and add your gaming IP Host's to it, disable HTTP & HTTPS scanning and set the 'web filter' to none and that's it. I have 3 XBoxes here that work great with this configuration. And yes they have all been on at the same time.

    Hope this helps...
Reply
  • 0
    Chris I respectfully disagree with you, Sophos should never add 'UPnP' for reasons you already said. " I'm fully aware of the security implications of uPNP".

    Moving forward you don't need to do any 'port forwarding' for XBox to work in fact this setup would not work if you have multiple XBox consoles in the house. All you need to do is create a IP Host for the gaming boxes then create a new policy at the top and add your gaming IP Host's to it, disable HTTP & HTTPS scanning and set the 'web filter' to none and that's it. I have 3 XBoxes here that work great with this configuration. And yes they have all been on at the same time.

    Hope this helps...
Children
  • 0 in reply to Big Ray

    Sorry - could I trouble you to share more details regarding the policy you created? I've tried to create the policy you described, but can't seem to get it to work - can't install new apps/games or update existing ones - getting error 0X8007000e on the Xbox. Tried various combinations and permutations but can't quite seem to get it to work. Would prefer at this point not to do port forwarding...

    Big Ray said:

    Moving forward you don't need to do any 'port forwarding' for XBox to work in fact this setup would not work if you have multiple XBox consoles in the house. All you need to do is create a IP Host for the gaming boxes then create a new policy at the top and add your gaming IP Host's to it, disable HTTP & HTTPS scanning and set the 'web filter' to none and that's it. I have 3 XBoxes here that work great with this configuration. And yes they have all been on at the same time.

  • 0 in reply to Big Ray

    Hi Ray,

    I am new to Sophos and I'm having the same issue with Xbox, FiOS VoD and Roblox. When you say, create a new policy, are you referring to a firewall rule?

    Thanks for the help.