Coasting - how to open ports on a router. How to open ports on an Asus router Asus router port forwarding does not work
Among Internet users, the topic of how to open a port on a router is very popular. Devices may be of different brands, but the algorithm is almost the same for all. In the article we will cover this topic, using as a direct example a router under the Asus brand, which includes all models - RT-N65U, RT-AC66U and even RT-N12, the configuration of which can be found here. The RT-N12+ device was taken as an experimental sample. It’s worth saying a few more words about what forwarding means. It couldn't be easier. So, open the port.
So, let's begin. Initial data – a router with an Internet connection. Our router is bound to a specific IP address (external). Subsequently, connected gadgets establish communication using internal addresses, which must be opened. This manipulation can be easily accomplished through the settings of the router itself. We fix a special algorithm of actions in them: data intended for one port goes to another computer (IP address), for which we forward.
Why complicate things so much? Maybe you can do without this? This procedure is usually requested by some utilities. Among them are various types of torrent clients, DC++ and more. Another reason is the need to run a web server, configure an IP camera, or play a specific game.
There are instances of programs that make life easier for users by opening ports on their own. The action is based on UPnP technology. However, this feature must be provided by the router itself (if there is UPnP support). Therefore, sometimes you still have to resort to the procedure described below.
You will have to spend a little time to understand the technology in accordance with which you should act. But if you are the owner of an Asus router, you don’t have to worry, but follow the instructions below step by step.
Settings Features
We will configure it according to this scheme:
Static IP assignment algorithm
A router is generally a multifunctional device. It has many different options, including the DHCP service. Thanks to it, internal addresses are assigned if there is a connection process to this device. In order to forward a port (for normal operation of redirection), the main condition is the presence of a permanent IP or static one. We use the previously mentioned service so that it does it for the laptop (for which we will do port forwarding).
Algorithm:
The further path will be like this: The local network — DHCP server. Find the line with the word Enable Manual Assignment, we agree by answering Yes. Go to the list MAC address to select the desired device. It is worth noting the fact that the address is set by the machines; you can change it at your discretion (for example, like mine). Next steps: Add, Apply. In the picture below you can see all these actions in more detail.
When everything is done as described here, expect a reboot of the router, as well as the assignment of a static IP.
Opening the port
To carry out all further steps, first decide which port will be forwarded. The data is indicated in the control panel, from which you should not exit after previous manipulations. It is not necessary to specify a specific port; you can resort to a segment (range). Typically, the program that requests the opening of a port indicates which option it needs.
Let's take a program like uTorrent as an example. It is present on many devices and people actively use it.
The image shows the data. Namely, the port number (this needs to be opened on the router). And also the lines where you need to check the boxes, that is, agree, for example, UPnP Forwarding. If you connect another utility or device, this number may change.
Algorithm:
- Let's move on. We go through the following path: router settings - Internet – Port Forwarding – Enable Port Forwarding – Yes.
There are the following lines: List of favorite servers, List of favorite games. It is possible to identify and specify very popular games (including, for example, Warcraft III), as well as other programs. They will be configured automatically.
- The data is indicated:
— Service name, that is, the name of the program;
— Port range– an indication is made to a specific port, when the case is isolated, or to several;
— Local IP address– static;
— Local port– the same meaning as in the second paragraph;
— Protocol– select values for data redirection.
- Then we proceed like this: Add— Apply.
We have carried out all the necessary actions for the task. It is necessary to save the settings so that in the future the router functions taking into account the new parameters, reboot it for the innovations to take effect. You can check the changes in the case to once again make sure that the procedure was carried out correctly. What we have? Packets that are sent to the address specified in the settings are redirected due to the functioning of the router to the computer. Based on the instructions, you can carry out further forwarding and installation of ports.
If you have a negative result following the steps given in the article, take the following steps: double-check the information you entered in the control panel, and also resort to disabling the antivirus for a while, as they are a common cause of problems.
Router port forwarding used to provide remote access to a specific computer (or device) located on the router’s local network from the outside. For example, there are several computers on a local network and you need to connect to one of them remotely. On the external network they all have the same IP address. A specific port is assigned to the router for the desired computer. Due to this, when processing requests from an external network with a specific port, the router redirects the user to the desired computer.
Port forwarding Let's look at an example of execution. However, these instructions are also suitable for any other settings related to port forwarding, for example, for setting up remote access to a video camera, other computer programs, etc.
Port forwarding for remote desktop (rdp) Windows
In this instruction we will look at how to do port forwarding using the example of the ASUS RT-N10U router. In other router models, the actions will be similar, only the external interface and the location of menu items may differ.
First of all, you need to assign a permanent local IP address in the router settings to the desired computer (or device) that will be accessed.
1. To get to the router’s control panel, open it and enter its IP address in the address bar. In my case it is 192.168.0.1. Most often, most routers use the address 192.168.0.1 or 192.168.1.1, although in the settings you can set any IP address from a variety of local ones.
2. If you entered the router address correctly, you will be prompted to log in (usually the default login is used: admin and password: admin, but this can be changed in the settings). Enter your username and password and click Entrance .
3. Select the settings item The local network , tab DHCP server. (In other routers we also look for the section related to DHCP).
4. At the bottom of the page we find List of manually assigned IP addresses bypassing DHCP and add the desired IP to our computer (you can assign the current IP of the computer). In my case, in the drop-down list of devices I select COMP(my computer name) and the ip field is automatically filled in with 192.164.0.84.
5. Click Apply .
Let's move on to port forwarding. Let's also look at the example of the ASUS RT-N10U router. In other routers, the settings will be performed similarly.
The Wi-Fi router is configured in its control panel via the web interface. Therefore, configuration changes can be accessed through any browser. To do this, just open page 192.168.0.1 or 192.168.1.1 (depending on the router model). Next you will need to enter your username and password. By default, both of these parameters are set to admin.
If the default username and password do not work, and you did not change these data, they may have been changed by the wizard when connecting or setting up the Internet. For security reasons, some providers change the default login information. In this case, they can be found in the contract or at the bottom of the router, on a separate sticker.
Advice! Don't forget to change your login information in your router's Wi-Fi settings. You can do this in the “System Tools -> Password” menu.
Changing your password will significantly secure your network and help prevent unauthorized access or resets. The settings will take effect after the device is rebooted.
If authorization in the router control panel is successful, a status page will open, which displays basic information about the router, Wi-Fi wireless broadcast data and the status of the current Internet connection.
Preconfiguration for port forwarding
Before forwarding, you need to change the settings for the distribution of local IP addresses within the network created by the TP-Link router. The device on which the open port will be used in the future must be given a constant internal address. DHCP is responsible for addressing within the local network, so you need to open the menu “DHCP -> List of DHCP Clients”. This window will display a list of devices connected to your network. We look for the desired device by name and copy its MAC address.
In the case shown in the screenshot, finding the required device was not difficult, since only one device was registered on the home network. However, there are situations when a significant number of devices are connected to the network, and the name of the required computer is unknown or not displayed. In this case, you can find out the computer address directly through the operating system. The easiest way is to use a special command on the command line.
Press the Win+R keys to open the Run New Program window. In it, enter cmd and click OK.
After entering the getmac command, you will receive the necessary data that you will later need to forward ports on your TP-Link router.
If an error occurs when executing a command, it is recommended to repeat the operation by running the command prompt as an administrator.
After this, you need to open the menu “DHCP -> DHCP Settings”. This page will display the range of IP addresses within which the computers on your network are addressed. In the case in the screenshot, the starting address is: 192.168.0.100, the ending address: 192.168.0.199. This data will be needed in the next step.
Next, you need to open the “DHCP -> Address Reservation” page and click the “Add new...” button. Without completing this step, port forwarding on a TP-Link router will not bring the desired result, since the computer will be assigned a new local address each time.
In the "MAC Address" field, paste the combination that you copied from the list of DHCP clients or the command line. In the “Reserved IP address” field, enter any address that is within the range specified in the DHCP settings of the TP-Link router. Click the "Save" button.
The added MAC address to IP binding will appear in the list, but for normal operation of address reservation, you will need to restart the Wi-Fi router, which the system will warn you about.
You can reboot your TP-Link router programmatically in the “System Tools -> Reboot” menu.
Opening ports on a TP-Link router
After completing these preparatory steps, you can begin to directly open the ports. In order to open them on the TP-link router, go to the “Forwarding -> Virtual Servers” menu and select adding a new entry
Fill in the fields with port numbers. In the IP address field, enter the value that you have reserved for your computer. If necessary, select a protocol. In the “Status” field, leave the “Enabled” checkbox so that the settings take effect immediately after rebooting the Wi-Fi router. If you want to forward standard ports of one of the services, you can do this by selecting the required service in the last drop-down list. There is no fundamental difference between entering it manually and selecting from a list, but this function can be useful if you do not remember the port number that needs to be opened.
The TP-Link Wi-Fi router offers the following services for which you can forward standard ports:
- GOPHER
- TELNET
The maximum number that can be opened on TP-Link: 65535.
In some cases, it may be necessary not to simply forward, but to dynamically open ports in response to an incoming event. You can configure this function in the adjacent menu: “Forwarding -> Port Triggering”. The most common use for this setting is working with complex applications that receive many incoming connections (online games, Internet telephony, and video conferencing applications). To create a new Port Triggering entry, click Add New.
The need for port forwarding on a router arises when you want to organize access from the Internet to some resource on your home network. This can be either a game server or an RDP, FTP server, or install a security camera at home to constantly see what is going on in your home (for example, if you left your child at home with a hired nanny).
Sometimes unconditional port forwarding is required for IP telephony. This depends on the principle by which your communications company operates.
Almost any router correctly supports all this functionality. The only thing I would like to pay close attention to is the need to obtain an external IP from the provider. Static or dynamic, in this case it does not matter much. In fact, you just have to have it.
- We prepare the computer by registering a fixed (static) IP address (Method 1)
- We prepare the computer by fixing its address on the router (Method 2)
Why is it necessary to forward ports to access internal resources from the Internet?
This need arises due to the fact that your router automatically filters out data that you did not request. This is primarily due to the need to ensure the security of your network. Imagine this: you have a computer, laptop, and file storage at home. And anyone can access all this from the Internet...
In order to prevent any evil spirits from entering the home network, the router allows only those requests and only to the computer on the network that it requested. For this, smart engineers came up with NAT - Network Address Translation. This system allows you to hide your internal address from the entire Internet. Thus, all devices connected to the Internet on your home network are seen on the Internet under one single IP address - external or white. Moreover, this can be either your white IP, or simply any provider’s, if the provider distributes gray IPs within its network.
Thus, if you want, for example, to connect remotely to your home computer via RDP, the router simply will not understand to whom exactly on the home network to redirect the request - you did not explain this to it... It will simply filter it out. Of course, there is still the opportunity to add your home service to the DMZ (Demilitarized Zone) section. But in this case, absolutely all requests from outside that no one has requested, as well as those for which a specific rule for ports is not specified, will be redirected to your node. This way you will make it completely defenseless, so unless absolutely necessary, it is better not to use this section for security reasons.
We do port forwarding
Checklist of necessary operations
In order to do correct port forwarding, you need to do several things, which we will now go through point by point, and then we will see how this all happens with a clear example.
1. You need to assign a static IP address to your computer, which will provide some service. There are two ways to do this.
1.1. Method 1. You can assign a static IP by registering it in the properties of the network card - this is a very reliable method, because nothing will change without your intervention. I think that this will be quite enough for a home network. The only thing that needs to be taken into account is the need to adjust the settings of your DHCP server, which is located in the router. We'll look at this with an example below.
1.2. Method 2. This method is more elegant, because. will not require changing the range of addresses issued by the DHCP server. In this case, you must assign an address to the computer using the same DHCP server. This method is a little less reliable, but it also has the right to life. Once in my life I encountered a situation where a computer that was “fixed” by a router to a certain IP suddenly began to receive a different address. Naturally, this was a problem with the router’s buggy firmware. However, we must keep in mind that such an outcome is also possible.
2. You must determine which ports and protocols will need to be forwarded. Currently, there are two transport protocols in use - TCP and UDP. For example, in order to connect via RDP or organize access to an FTP server, we need TCP. IP telephony uses UDP for data transmission. Keep this in mind. If this information is unknown to you, do not be lazy to open Yandex or Google and make the appropriate request. Although, in most cases, routers already have pre-installed port forwarding for the most frequently occurring needs. We will also look at this below.
3. You need to make sure that you have a white IP. Some providers may provide it to all network subscribers by default (nowadays this is becoming less and less common), or you will have to activate it (call the provider or go to your personal account). You can find out by going to the web interface of the router admin panel.
Go to the admin panel of the router
We will work on port forwarding on a TP-Link router, because... Routers of this brand are gaining more and more popularity due to their price-quality ratio. Now in times of crisis this is especially relevant. Don’t worry if you have a router of a different brand - port forwarding in 95% of cases is practically no different, you just need to do everything by analogy.
So, go to the admin panel of the router by entering the address 192.168.0.1 in the address bar - this address is set by default in most routers. In rarer cases, this may be the address 192.168.1.1 or, in even rarer cases, 192.168.10.1. If you use the Yota Internet center, most likely you need to go to 10.0.0.1. And, in order not to guess at the tea leaves and not scour the Internet in search of the correct address, you can go to Start>Control Panel>Network and Sharing Center>Click on the active network connection shortcut and click the Details button. The Default Gateway item will contain the address of your router.
After requesting a login and password, enter the word admin in the login field and in the password field (unless otherwise written on the router body or you have not changed it yourself).
And immediately in the web interface we see that our IP address is internal to the provider (gray, in other words). You need to look specifically at the WAN section - these are the settings for your Internet!
To make it clear how to distinguish white from gray, I wrote this mini-cheat sheet. The fact is that back in the early 80s, when the specification was approvedTCP/IP smart heads immediately decided to reserve various address spaces (subnets) for special purposes. They even reserved a couple of subnets so that these addresses could be mentioned in technical documentation, otherwise they go to court in the homeland of the protocol more often than for bread... Well, that’s already a lyric. Of all this reserved splendor, we are interested in subnets allocated specifically for private networks. There are few of them:
10.X.X.X
172.16.Х.Х
192.168.Х.Х
where X is a number from 0 to 255.
In my example, we see that the address starts with ten - this means that my address is internal. Well, I’m not offended - if I need a white one, I’ll ask my provider for an allocation.
Checking and adjusting DHCP settings
Before forwarding a port, we need to allocate address space on our home network that we can use for our network services that need to be accessed from the Internet. Let's go to the section DHCP.
We are interested in three things here:
On or off DHCP server(DHCP Server Enabled/Disabled - I will give the names of English-language menu items in parentheses, since not all routers are equipped with a Russian-language interface);
- ElementaryIP address (Start IP Address) - the initial value of the address space range from which the DHCP server will distribute IP addresses;
- FiniteIP address (EndIPAddress) - the final value of the address space range from which the DHCP server will distribute IP addresses.
Also, look at the title on the green background and try to guess what the translator was thinking about when he did the Russian localization, the programmers were in agreement. Just kidding, I'm kidding - I think people had a very tight deadline and didn't have time to catch all the mistakes.
In principle, if you are the proud owner of a TP-Link router, then most likely you will have this range set by default. I did not change this setting on my home router, because... Allocation of a range of 200 addresses will be enough for me with a tenfold margin. In general, Zyxel brand routers usually have a default range somewhere from 192.168.0.20 to 192.168.0.39 - 20 addresses.
Now let's decide whether we will record the IP address of the computer to which we want to open access or set this through the appropriate DHCP server settings.
We prepare the computer by registering a fixed (static) IP address
It happens that by default the router distributes the address space of the entire subnet (in the settings it is from 192.168.0.2 (the router address should not be in the address range) and 192.168.0.254). If you want to use the first method, then you need to adjust this range, freeing up the address for our computer. Change the FROM field, for example, to 192.168.0.3 - then we can use the address 192.168.0.2 for our computer to which we are opening access. Although, for a home network, as a rule, such a number of addresses is not required, so in the FROM field you can write, for example, 192.168.0.10, or 192.168.0.100 at the end - in case you have to open something else - you definitely won’t miss the address.
In order to assign a static IP address to your computer, go to Start>Control Panel>.
We click on the link indicating an Internet connection (Access type: Internet) and get into the following window:
Here we click Properties and choose Internet Protocol Version 4
And press Properties
Choose Use nextIP address: and enter there the static address that was freed in the previous step. (IP address, subnet mask, default gateway, preferred DNS server). Click everywhere OK.
We prepare the computer by fixing its address on the router
This is the second way. It no longer requires you to make any settings on your computer, but you need to know the MAC address of the network adapter. However, first things first.
We follow the already familiar path: Start>Control Panel>Network and Sharing Center.
Only now in the window
Select a section Intelligence
Here we are interested in the line indicating the Physical address - this is the same MAC. Don’t be surprised that I have it so exclusive; I slightly corrected it in one well-known program. Otherwise, my computer will be easy to track. Of course, I don’t suffer from paranoia, but I also don’t have a great desire to reveal unnecessary information.
So, we have found out the MAC address, now go to the section DHCP>Address Reservation (Address Reservation)
Here I already have a certain address reserved with an equally magical MAC address (of course, I also corrected it). Click Add new... (AddNew...) (but such a translation makes my soul happier).
We drive in our wonderful MAC address and any IP address allocated for this matter, and located in the range that distributes DHCP! Otherwise nothing will work. And press Save.
Actually, now we click where the router asks to restart. For the purity of the experiment, we reboot the target computer and move on to the next stage.
Configuring port forwarding on the router
We are interested in the section Forwarding (Forwarding), and in this section Virtual servers (Virtual Servers- who would have thought? - approx. ed.). This section opens immediately by clicking on a menu item.
By default, we should have empty here. To correct this injustice, we press Add new... (Add New…)
And we get into this form. Let's go in order:
Service port (Service Port) is a port, or a range of ports, which we will use from the outside. Having seen the request on this port, the router will understand where to redirect our packet so that it reaches the goal.
Internal port (Internal Port) is the port that our home network service listens on. If we access the internal service on a different port, nothing will work.
IP address (IPAddress) is the address of our computer or other device that we need to get to from the Internet. As you can see, it is clearly indicated here. Therefore it needs to be fixed.
Protocol (Protocol) - here you can choose either TCP, or UDP, or you can process both protocols on one port at the same time. However, my good advice is that if you know that exactly one transport protocol is required, and you also know which protocol is required, it is better to strictly choose it. Because, as the old admin wisdom says, an extra open port is an extra security hole. Keep this in mind.
State (Status) - Included (Enabled) / Turned off (Disabled) - well, there’s not even anything to comment on here - the rule can be turned on or off.
Standard service port (Common Service Port) - the most commonly used services and preset ports for them. If you expand this drop-down list, you can see that there are a lot of preinstalled ports there and in most cases there are enough of them.
If you select any of them, all fields will be filled in automatically. Let's choose the HTTP protocol, as if we were going to make a home web server and make it accessible from the Internet.
As you can see, all we have to do is register our local device address. If you need, for example, to forward RDP port 3389, then instead of 80 you need to enter 3389 in both fields.
Sometimes it happens that the router settings include ranges strictly from and to. In this case, if you need to register only one port, enter the same values in these fields.
I entered 192.168.0.97 in the IP address field. You must enter the address that you have recorded for your target computer.
That's all, actually. All rules for virtual servers are usually applied without rebooting the router. Although, anything can happen. If it doesn't work, restart the router and try restarting your computer. After this everything should work.
What to do if suddenly nothing works?
There is one more point that may prevent you from accessing the service that you should see from the Internet. This is a Firewall or Firewall. And also all kinds of antiviruses that have their own Firewall and, sometimes paranoidly, try to protect the user’s computer from external threats at any cost.
Try disabling your Firewall and check if the service is available after that. If everything works, then you need to dig there.
What exactly and how to dig will be discussed in one of the following articles.
The Internet is not just web surfing. Online games, peer-to-peer networks, VPN, VOiP telephony... All this requires not only an active connection, but also open ports, and each service has its own. It is possible that you want to host your website by running a web server on your home PC. This also requires opening ports. If you bought a new router, there is a 100% chance that the ports will be closed. Port forwarding occurs differently on different router models, but on SOHO equipment (equipment for home and small office) it is accessible to an untrained user.
Why do you open ports on a router?
The Internet channel between the provider and the user can be imagined as a pair of apartment buildings at different ends of the street. The apartment is a user application, and the floor of the house is a port. Application data (packets) is carried by a virtual mailman. In the connection option without a router, when the provider's cable is directly connected to the network port of your computer, there are no problems with the ports: the package from the sender's fifth floor is easily transferred by the postman to the recipient's fifth floor.
Since even the most undemanding user at home has several devices that need an Internet connection, a router appears on the scene. And in this case, the pattern of packet movement changes. In the settings of any router that uses NAT (network address translation), all outgoing requests on any ports are closed by default. That is, if special settings are not made, the postman with a package will be able to enter the house, but the elevator will not open the doors on the desired floor.
The simplest network diagram with address translation (NAT)
Therefore, for the operation of video conferencing systems, torrent downloads, online games, FTP and web servers, it is necessary to configure and open the appropriate ports, which will be discussed below.
Preliminary setup, how to find out the network address of the router
The first thing you need to do is determine the router's address on your home network. It is not difficult.
Calling the Network Connections snap-in
View the status of the network adapter in the Network Connections snap-in
Viewing the gateway (router) address in the network adapter information
Video: how to easily find out the IP address of a Wi-Fi router
How to open ports on a router yourself
As mentioned above, in the factory settings of any router there are no port settings and all outgoing requests are blocked. To open a port (one or more), you need to make the necessary settings through the router’s web interface.
It should be noted that the opening of a particular port is configured not for the router, but for the client (computer) that is connected to the router. If there are five users on your home network who need to open port No. 20 (for example), in the corresponding section of the web interface you will need to make five entries with settings, separately for each computer.
For TP-Link
On routers of the TP-Link family, you can open and configure a port using simple step-by-step instructions.
TP-LINK router web interface, main screen
Adding a port via the Web interface of the TP-LINK router
Entering the port parameters of the added port in the Web interface of the TP-LINK router
If you open port 80 for your computer, for example, to run a web server, then in order to get to the router’s web interface, you will need to add port 8080 at the end of the address, like this: “192.168.1.1:8080”. This will happen because by default, access to the router’s web interface is provided through port 80. If you opened this port for your own purposes, the router will automatically change its access port to 8080.
Video: opening ports on a TP-Link router
The port does not open - what to do?
The ability to open a particular port also depends on the policy of your Internet provider, the services available under your tariff plan, and the network infrastructure. This is especially true for subscribers living in apartment buildings. In order to reduce the cost of laying a network within a house/entrance, the provider installs inexpensive routers in them, and in order for such devices to work stably with a large number of connected users, this significantly limits the possibilities.
It would be naive to expect decent performance from such hardware.
In particular, ports used by torrent trackers are blocked, IP addresses are allocated “gray” (from the address space of the intra-house router). Thus, in order to configure port forwarding, the user needs to configure not his own home router, but an internal one, which in practice is not feasible.
The solution to the problem is to switch to a more expensive tariff plan, where there will be no restrictions, or connect to a permanent (static) IP address service, which will make it possible to configure ports from your home router.
Also make sure that firewall programs or anti-virus packages installed on client computers that protect the Internet connection in real time do not block access to ports from outside.
If you try to manipulate the opening of ports on a corporate network (at work) and nothing works, the box opens simply. Your caring system administrator has blocked them so that you are not distracted by stupid things during work hours.
How to change or add a port to a router
All changes to port configurations are made through the router's web interface. It is also possible to configure the router via Telnet, but a user who knows how to do this will not read this article. Let's look at adding a port using the example of the web interface of a TP-Link family router.
List of open ports in the Web interface of the TP-LINK router
When changing data or adding a new port, be careful not to make multiple entries with the same port number. The system will allow you to do this, since there is no “foolproof” in the router interface, but due to resource conflicts, not a single entry will work.
Solving possible problems with port forwarding
There are only two types of problems with port forwarding: a) “set it up, but it didn’t work” and b) “set it up, it worked, but it stopped working.” And if we dealt with problem “a” in the section “The port does not open...”, then we should dwell on problem “b” in more detail.
The IP address of the client computer has changed
When you open a port using the router’s web interface, in addition to the number of the port to be opened, you also enter the network address of the computer for which the port will be opened. Typically, a DHCP server is enabled on the router and client computers receive IP addresses from it. If the computer is rebooted or turned off and then turned on, the router may give it a different address than the one it had in the previous working session. Since the open port is bound to a different IP address, it will not work.
To prevent this from happening, you need to register static addresses for client computers.
Opening the network connections window through the Windows command line
Calling TCP/IP settings from the network adapter properties
Entering the static TCP/IP address data. The router address is used as the gateway address
Now the address of your computer on the network will not change even if you replace the router, and the ports open to it will work stably.
The program for which the port was opened changes it arbitrarily
The problem is typical for clients of peer-to-peer networks, in particular, torrents. Let's look at solving the problem using the uTorrent client program as an example.
By default, the client program changes the port of outgoing connections every time it is launched, and since the port is static (unchangeable) in the router settings, the program does not work correctly. To fix the error, just specify the port explicitly in the program settings and disable random port selection at startup.
Settings for uTorrent peer-to-peer client connection parameters
The port is open, but applications do not run through it
The problem is related to activating the firewall directly on the router. Simply turning it on, without additional configuration, completely blocks access to ports from the outside. The solution to the problem is either fine-tuning the firewall through the router’s web interface, or completely disabling it there.
Disabling the built-in firewall in the Web interface of the TP-LINK router
Video: setting up a firewall and router for port forwarding
If you have disabled the firewall in your router, be sure to activate it on client computers. This can be either the Windows Defender built into the OS, or one of the many third-party programs with advanced capabilities, for example, Eset Smart Security.
Configuring and forwarding ports on “home” series routers is a simple job that can be easily accomplished by a beginner. Although the examples we looked at are based on the web interface of routers from the TP-Link family, routers from other manufacturers allow port forwarding similar to our examples. Don't forget that any open port is an additional loophole for malware and unscrupulous people greedy for other people's data. Keep the ports open only as long as you need it for work, and if there is a long break in it, deactivate the ports. Try not to put your eggs in one basket - do not configure ports for online games and a program for managing a bank account on the same computer. Be carefull!
