As the title suggests, I want to know whether NAT loopback is possible with the RV220W router/firewall, or when can we expect a firmware update that addresses this?
For terminologys sake, what I mean is that I've got a rule that maps HTTP/S to 192.168.1.2. However, when accessing my external ip from an internal ip, I don't get routed to 192.168.1.2. This is what I want, though.
Best regards, Max
This is becoming a popular issue. What you are describing is called or refered to as "hairpining". For some reason the RV220 and the SA500s have this issue. (SA500s may have been corrected but not sure).
What I would recommend as a workaround is to create a DNS entry in your DNS server if you have one. If not... well... There are workarounds but none that I know are too pretty.
More information about your network would help though.
Hi, My name is Eric Moyers. I am a Network Support Engineer in the Cisco Small Business Support Center. Please call into the Small Business Support Center at 1-866-606-1866 an open a suport case. There is a beta firmware that will fix this issue. When you talk with the agent let them know that you need to escalate this case to get that firmware.
Cisco Network Support Engineer
I received the 126.96.36.199 beta firmware.
It does not solve this hairpinning problem.
It does not fix the non-TCP/UDP IP packets routing problem.
What is worse, is that CISCO support cannot confirm, that these two important problems are worked upon to be fixed.
This hairpinning problem is really annoying me. As a consequence nobody here can access their email accounts from their smart phones, when connected through the RV220W wireless. From ordinary workstations it is possible to enter internal addresses into the hosts file, but how would you do this on a smart phone (not to mention removing them again, when outside the premises !)
And no: two identical accounts with internal/external IP address is not possible on my smart phone and would be cumbersome anyway
There is a new firmware beta (or is it an alpha) that fixes this issue. If you open a ticket with Cisco small busness you may get lucky and they will let you test it. However thats up to them and you.
I just brought this router and very disappointed that it is no NAT loopback for this advance router. I already upgrade the firmware to 188.8.131.52 but still no fixes for this problem. Anyone can tell me which version of firmware will expect to fix this problem.
It actually is working in the 184.108.40.206 firmware, but with the special feature, that the sender IP address is always the internal IP address of the router itself. Gone is the possibility of checking for a specific client address e.g. when testing.
This should definitely be fixed.
Sorry Joergen, you said it fixed but my router is definitely not working. but look like the port forwarding not work properly. For example, I setup a webserver in DMZ host and port forwarding HTTP port (80) to my web server, when I am using computer in LAN to access my public address, it always direct to the router management web page with HTTPS connection. It is rare that even I specify http:// at the browser, it still automatically switch to HTTPS. Is it something I miss to setup for port forwarding?
It is what I setup for port forwarding and 192.168.1.3 is my server.
|Service||Status||Source IP||Destination IP||Forward from Port||Forward to Port|
It is my Access Rules
|Default Outbound Policy|
Is it anything I missed to setup?
Are you sure, you are using firmware 220.127.116.11 ? (Check the Status -> System Summary page) The screen dump is showing an incorrect header (Forward from Port) which I seem to recall was present in an earlier firmware version.
I have always wondered about the RV220W Firewall -> DMZ Host page. As opposed to any other router in the market it does not mean, that traffic is routed to that IP-address if no other rule is present. It appears to me only to be a name for the IP-address of your DMZ server.
You must explicitly route all traffic to any LAN server.
Make sure, you are using Firewall -> Access Rules to define forwarding. I seem to recall a problem by using the Port Forwarding page.
Finally, I make it works. I need to set a Access Rule to allow all outbound access. I don't quit understand, may be by default, the router don't allow the outbound transmit so the my internal web server can not response the request. Hope CISCO provide some documentation to mention all this kind of trick to setup the router in future.