Strict NAT Gaming - Enable UPNP plugin the way to go?

Started by g0nz0uk, April 11, 2021, 06:35:28 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
April 11, 2021, 06:35:28 PM
Hello,

I managed to get my sons Xbox using Open NAT using - https://ultramookie.com/2020/05/opnsense-xbox-live/

Xbox uses UDP/TCP 3074 so I guess this is easy.

My other son users a PC and when he plays GTA5 and Modern Warfare Warzone he gets a message he is using Strict NAT, so I'm not sure I can use this method and I'm not sure of the ports.

I read that some enable the UPNP plugin and let OPNsense dynamically open the ports like a regular home router?

Thanks
April 12, 2021, 11:05:05 PM #1 Last Edit: April 12, 2021, 11:09:39 PM by packet loss
I would use upnp and not port forwarding. Install the os-upnp plugin. The plugin is a webgui front-end for miniupnpd that will be installed once you install the os-upnp plugin. You can configure it under Services -> Universal Plug and Play.

Hopefully you have your Xbox and PC setup with static IP addresses. Under upnp settings make sure default deny is selected as well as upnp. In the access list add your Xbox and PC.

allow 1024-65535 192.168.1.121/32 1024-65535 <-- your Xbox IP
allow 1024-65535 192.168.1.122/32 1024-65535 <-- your PC IP

The Xbox and PC will be the only device that can use upnp with the default deny rule selected. You won't see it but part of the miniupnpd.conf file would look like this:

allow 1024-65535 192.168.1.121/32 1024-65535 <-- your Xbox IP
allow 1024-65535 192.168.1.122/32 1024-65535 <-- your PC IP
deny 0-65535 0.0.0.0/0 0-65535 <-- this default deny will prevent any other LAN device to use upnp

upnp should work for you. If both your sons play the same game at the same time this may pose a problem with with keeping an open NAT.

You will also need to set outbound NAT to hybrid and add 2 outbound rules, one for your Xbox and one for your PC with outbound static-ports.
June 28, 2021, 04:20:53 PM #2
Quote from: packet loss on April 12, 2021, 11:05:05 PMupnp should work for you. If both your sons play the same game at the same time this may pose a problem with with keeping an open NAT.

Can I please have some assistance, as this is precisely the problem I am facing with Call of Duty Cold War on both my PS5 & PC. I have just posted a thread about it here https://forum.opnsense.org/index.php?topic=23709.0 in more detail.
April 19, 2023, 02:33:18 AM #3
Quote from: Andy112 on June 28, 2021, 04:20:53 PM
Quote from: packet loss on April 12, 2021, 11:05:05 PMupnp should work for you. If both your sons play the same game at the same time this may pose a problem with with keeping an open NAT.

Can I please have some assistance, as this is precisely the problem I am facing with Call of Duty Cold War on both my PS5 & PC. I have just posted a thread about it here https://forum.opnsense.org/index.php?topic=23709.0 in more detail.


I can attest this works like a charm. have two xbox's and all can play COD at the same time without issue.
December 20, 2023, 01:53:33 AM #4
learned recently - check your NAT Reflection settings, all should be off, then UPnP with its 5351? port on the interfaces configured should work as the guides state

if you still need what NAT Reflection gave you, check out running your own install DNS/Bind
Custom: ASRock 970 Extreme3 R2.0 / AMD FX-8320E / 32 GB DDR3 1866 / X520 & I350 / 500GB SATA
December 23, 2023, 06:15:52 AM #5
I can get type 2 with my playstation, no UPNP or open ports. I just create a static NAT under Firewall --> NAT --> Outbound.

The mode is hybrid. I also created an group alias so I can add multiple devices to the alias.
Print
Go Up Pages1
User actions