Port Forwarding Time Capsule With Bridge Mode

What firmware are you running?

There is a bug in later firmware of the Gen1-4 TC series (Gen1-5 AE).. that should not be there if you use 7.6.1 or earlier.

For latest AC wireless version AE or TC the bug is there and seems to not have been fixed.

That should not stop the TC passing all ports in bridge mode however.. it may be worth moving the connection from your modem/main router from WAN to LAN..

Or it might be worth running the TC in wan bypass mode.. I will explain.

When you change to bridge mode the WAN port should be joined to LAN. Your ports issue might exist due to the a failure to do that properly. So try simply not using the WAN port. (since this is then connected LAN to LAN no port forwarding will affect connections through the switch chip.

If you still have issues, tell us and I will explain WAN BYPASS mode in more detail.

Well, it is frustrating when one user pipes in to say......."it works for me".

Time Capsule here has been in Bridge Mode since day one. 3rd Gen AirPort Extreme is the router, setup to port forward/map to the Time Capsule drive and drives connected to the USB port on the AirPort Extreme.

I can access the hard drives from anywhere with my Mac and iPad (using Filebrowser). Never fails.

Port Mapping was set up originally a few years ago using a 5.x version of AirPort Utilty and probably Snow Leopard on the Mac.

Things work just fine using firmware 7.6.4 on the AirPort Extreme and 7.7.3 on the Time Capsule, which replaced another Time Capsule....also with no issues regarding Port Mapping.

Not thrilled with Mavericks, but I cannot say that I am having any issues as far as Port Mapping is concerned with it or the 6.x version of AirPort Utility that is installed.

Time Machine.....now that is different story. 😉

Sorry, can't help with DMZ......haven't used it in some time. Can't remember many details.

But, when I did, I believe that I setup a gateway (2-Wire?) with a Time Capsule in DMZ mode, but I used DHCP and NAT on the Time Capsule.....not Bridge Mode. Port forwarding worked fine, as I recall using a game console that would not work correctly until we set up port mapping with the correct values.

But....things are vague. Sorry.

A few things are coming back to me. LaPastenague knows DMZ backwards and forwards, so he may comment as well.

When the TC was setup in the DMZ of the 2-Wire, i set up the TC to connect using a Static IP address from the 2-Wire......something like 192.168.1.10......and then the TC was setup as a router using DHCP and NAT.

All devices that were connected to the TC got 10.0.1.x IP addresses. We had Double NAT (which was expected and could not be avoided), but it did not cause the normal issues since all network devices were connected to the TC.

I know that I had to setup port mapping for the game console on the TC....but cannot remember whether I also had to set it up as well on the 2-Wire.

But.......not sure if any of this has anything to do with a Bridge Mode situation on the TC though.

But now all mapped ports are timing out..

Then you may need to set up port forwarding/mapping on both routers. I'll have to do some checking on a setup like this to see what goes where.

This is where we need Tesserax. I'll try to find him and ask him to take a look at this post.

I have been out trying to install windows 8.1 onto a computer running windows 8 and it is all coming back to me why I swapped to Mac OS.

DMZ to the TC in bridge would be useless. The TC is not passing the IP to client.. the main router is doing that.

If you DMZ to a TC running in router mode.. then you are double NATting which is still not ideal.

I think you are misunderstanding something.. Port Forwarding should all be handled by the main router.. and should be passed to the ultimate client which should be fine. The TC should be transparent in that process in bridge mode.. but DMZ is not the way to go.. forward the exact ports that are required..

Testing must take place with something there to respond to the port.. otherwise the test utilities are useless.

And they can be useless anyway.. the only true test of port forwarding is actually connecting via WAN and testing access.. as Bob has done in locating his disks.. I have done the same thing with remote access to the TC.

Maybe start over and tell us what is the main modem router??

Testing must take place with something there to respond to the port.. otherwise the test utilities are useless.

And they can be useless anyway.. the only true test of port forwarding is actually connecting via WAN and testing access.. as Bob has done in locating his disks.. I have done the same thing with remote access to the TC.

Right on.....about the "port testing" utilities. Take your pick of utilities, and most of the time they show a port "closed" when I run a test and know that it is open because I can reach my Time Capsule hard drive, or the drive connected to the AirPort Extreme.....which I could not do if the port was "closed" as the utility indicates.

I'm at my son's house at this moment and testing remote access back to my network. The "port tester" says port 548 is closed, yet I can access the hard drive on my Time Capsule normally with no problems.

The main router from our ISP has the IP 192.168.254.150 set up to be in DMZ (per request) as well as the, what they call, "soft firewall" disabled.

DMZ per request is not an option I know..

Meaning it opens all ports to all clients.. I have certainly only heard of DMZ where you must point it to a single client.

And DMZ via a second NAT router never works.

You have to plug the device that is going to be accessed directly into the ISP router. And then test from there.