How To Forward a Port

Navigation menu

Knowledge Base
These are incoming connections, so, as discussed above, the router will drop them. There are two shareware PFConfig by Portforward. This interface has a very different address which is assigned by your ISP. Let's look at a usage example. Just click around a bit an you'll find it. We have three different ways we can do this: Another example would be a local network with two machines, where the second one with the IP

Port forwarding

To really explain port forwarding, you first need to understand a little more about what your router does. Your internet service provider assigns one IP address to your internet connection.

All computers on the internet need a unique IP address, but you have multiple computers in your house and only one address. So how does this work? If you know what it is and just want to know how to do it: The documentation is there hidden behind an ad-page for their automatic portconfig tool.

Just click around a bit an you'll find it. Inside your network, computers have addresses like All addresses in the These addresses are officially assigned by IANA to be used inside of private networks. Your router automatically assigns such an address to each computer connected via DHCP.

These addresses are how computers in your network communicate with the router and with each other. Your router has a separate network interface that connects it to the internet. This interface has a very different address which is assigned by your ISP. This is the one address that I mentioned before, and your router uses it to communicate with other computers on the internet.

Computers inside of your network have non-routable private IP addresses, meaning that if they send packets directly to the internet the packets will automatically be dropped packets with private addresses are not allowed to traverse the internet for stability reasons. But your router has a routable address. Network Address Translation, as its name suggests, translates between these two kinds of addresses, allowing the multiple computers inside of your network to appear to the internet as one computer with one address.

Although this might sound complicated, it's actually pretty simple how your router does it. Every time a computer inside your network wants to connect to a computer on the internet, it sends the connection request to the router it knows to send it to the router because its Default Gateway parameter is set to the router's address. It then takes note in a database called the NAT table that the connection was initiated, so that it remembers it later. When the response comes back from the remote computer a "SYN-ACK" , the router looks in its NAT table and sees that a connection to that host on that port was previously initiated by a private computer on your network, changes the destination address to the private address of the computer, and forwards it inside your network.

In this way, packets can continue to transit back and forth between networks, with the router transparently changing the addresses so that it works. When the connection is terminated, the router just removes it from the NAT table. This might be a little easier to visualize with a metaphor - let's say you're a freight forwarder in the US working with Chinese clients. So, a package comes to you from one of your clients in China the private network, in this example with an actual destination somewhere in the US the internet.

You change the address label on the box to the US public address, and you change the return address to your own public address since it can't be returned straight to China without inconveniencing the customer and hand it to the postal service. If the customer returns the product, it comes to you. You look it up in your records and see what company in China it came from, and change the destination to that company its private address and the return address to your private address, so that they can send back a replacement through you.

This works great, but there's a bit of a problem. What if a customer needs to send something to the company, let's say a money order in payment for something? Or, let's say that a computer on the internet initiates a connection with the router a SYN request , say to a web server that is in the network. Since many routers require a static ip address on your computer before you can forward ports we have created many static ip address related guides.

If you want to learn a little bit more about what port forwarding and open ports are all about, please Start Here. Intro Download Buy News Support. How To Forward a Port A port forward is a way of making a computer on your home or business network accessible to computers on the internet, even though they are behind a router. The easiest way to forward a port is to use our Network Utilities suite of tools.

A summary of the steps to setup a port forward in your router are: Login to your router. Navigate to your routers port forwarding section, also frequently called virtual server. Create the port forward entries in your router.

The source address and port are, in this case, left unchanged. When used on machines that are not the default gateway of the network, the source address must be changed to be the address of the translating machine, or packets will bypass the translator and the connection will fail. When a port forward is implemented by a proxy process such as on application layer firewalls, SOCKS based firewalls, or via TCP circuit proxies , then no packets are actually translated, only data is proxied.

This usually results in the source address and port number being changed to that of the proxy machine.. Usually only one of the private hosts can use a specific forwarded port at one time, but configuration is sometimes possible to differentiate access by the originating host's source address. Unix-like operating systems sometimes use port forwarding where port numbers smaller than can only be created by software running as the root user.

Running with superuser privileges in order to bind the port may be a security risk to the host, therefore port forwarding is used to redirect a low-numbered port to another high-numbered port, so that application software may execute as a common operating system user with reduced privileges.

The Universal Plug and Play protocol UPnP provides a feature to automatically install instances of port forwarding in residential Internet gateways. An application that provides an Internet-based service may discover such gateways and use the UPnP IGD protocol to reserve a port number on the gateway and cause the gateway to forward packets to its listening socket. Port forwarding can be divided into the following specific types: Local port forwarding is the most common type of port forwarding.

It is used to forward data securely from another client application running on the same computer as the Secure Shell Client. Local Port Forwarding lets a user connect from the local computer to another server. By using local port forwarding, firewalls that block certain web pages are able to be bypassed. Two important items in local port forwarding are the destination server, and two port numbers. As stated above, local port forwarding forwards data from another client application running on the same computer as the Secure Shell Client.

The Secure Shell client is configured to redirect data from a specified local port through the secure tunnel to a specified destination host and port. This port is on the same computer as the Secure Shell client.


Leave a Reply

A port forward is a way of making a computer on your home or business network accessible to computers on the internet, even though they are behind a router. It is commonly used in gaming, security camera setup, voice over ip, and downloading files. Port forward your router for free. Extra features designed to make things a little easier are part of the pro version. Program Summery: Simple Port Forwarding works with WebPages and not directly with your router. Making it a safe program to use. Its no different than using Firefox, IE or any other browser to setup port forwarding yourself. In computer networking, port forwarding or port mapping is an application of network address translation (NAT) that redirects a communication request from one address and port number combination to another while the packets are traversing a network gateway, such as a router or firewall.