port foward Port Forwarding on Xfinity Router

[TinsellyCone241]

So I know how port forwarding works, but I use an Xfinity router (With my setup it's cheaper to rent Xfinity's router than to use my own). The Xfinity router has a port forwarding option in the settings on 10.0.0.1. This however just links to the XFi website where you can add a port forward there. The issue is, their website has no option to set the start port and end port. I am adding NextCloud to my Unraid NAS which uses ports 80 and 443 for its web UI, but these ports are in use by Unraid, so I want to map external traffic coming into port 80 or 443 to ports 180 and 1443 (just for the NAS) and set NextCloud to use those ports so that I can use my domain and access NextCloud from outside of my LAN. Is there another way to do this without using the port forwarding option? I contacted Xfinity support which (as usual) was useless and just told me what I already knew.

[Skiiwee29]

edit: Removed as I appear to be incorrect in my statement. 

[TinsellyCone241]

2 minutes ago, Skiiwee29 said:

you do not want to forward any port 80 or 443 traffic to a specific IP. This is your source of all website data.. Port 80 translates HTTP data and 443 HTTPS. IF you forward this to your Unraid, this will effectively kill all your internet connections for everything else. 

I am trying to setup a reverse proxy in order to use NextCloud from outside of the LAN, so I just want to redirect traffic coming to my NAS' IP to a different port. I am following this video to try and figure out what I need to do. Have a look at what he says at 10:05. That's where I am.

 

Edited August 5, 2021 by TinsellyCone241

[Chris Pratt]

16 minutes ago, Skiiwee29 said:

you do not want to forward any port 80 or 443 traffic to a specific IP. This is your source of all website data.. Port 80 translates HTTP data and 443 HTTPS. IF you forward this to your Unraid, this will effectively kill all your internet connections for everything else. 

Unless I'm misunderstanding what you're talking about here, this is incorrect. The port forwarding would affect incoming connections, not outgoing. You can still browse the web or whatever; it's just incoming connections to 80 or 443 on that IP would be routed to a specific device. You could do this, for example, to self host your own website.

[TinsellyCone241]

8 minutes ago, Chris Pratt said:

Unless I'm misunderstanding what you're talking about here, this is incorrect. The port forwarding would affect incoming connections, not outgoing. You can still browse the web or whatever; it's just incoming connections to 80 or 443 on that IP would be routed to a specific device. You could do this, for example, to self host your own website.

Yes, I do understand that. I am trying to host a website (The NextCloud webUI), but Unraid uses the http and https ports for its own stuff, so I am wanting to take any traffic coming from the general internet to my NAS and move it to a different port so that Unraid doesn't intercept it and it can instead be used by NextCloud. This is kind of complicated and might mess up my other things, so maybe I could try to redirect traffic coming to nextcloud to a different IP by redirecting that traffic to my network card rather than my motherboard's build in ethernet port and then those ports would be open and I wouldn't have to do any of this right?

[kirashi]

55 minutes ago, Skiiwee29 said:

you do not want to forward any port 80 or 443 traffic to a specific IP. This is your source of all website data.. Port 80 translates HTTP data and 443 HTTPS. IF you forward this to your Unraid, this will effectively kill all your internet connections for everything else. 

Assuming I'm understanding correctly, not true. I have port 80 & 443 forwarded to a webserver running on my Synology NAS without an issue. All our devices have internet access and I can access the webserver remotely either through a reverse proxy OR if I'm feeling dangerous, a Dynamic DNS mapped subdomain.

 

That being said, @TinsellyCone241 we also have the Comcast-provided XB6 modem here with the extremely limited cloud-based control panel. Ended up bridging it days after we got it so my AdvancedTomato-based Netgear router could handle all our routing needs, at least until I pony up cash for Ubiquiti stuff. If xFinity's firmware is too limiting, you might end up having to do the same thing.

[TinsellyCone241]

3 minutes ago, kirashi said:

Assuming I'm understanding correctly, not true. I have port 80 & 443 forwarded to a webserver running on my Synology NAS without an issue. All our devices have internet access and I can access the webserver remotely either through a reverse proxy OR if I'm feeling dangerous, a Dynamic DNS mapped subdomain.

 

That being said, @TinsellyCone241 we also have the Comcast-provided XB6 modem here with the extremely limited cloud-based control panel. Ended up bridging it days after we got it so my AdvancedTomato-based Netgear router could handle all our routing needs, at least until I pony up cash for Ubiquiti stuff. If xFinity's firmware is too limiting, you might end up having to do the same thing.

Ok, that is what I thought, thank you! Looks like I will be replacing my router then. I think I could probably get it to work somehow by using the network card and running all data for the webserver through there, but I don't really know how to do any of that and I probably should replace the router anyways. I'll just have to do some more research.

[Donut417]

20 hours ago, TinsellyCone241 said:

probably should replace the router anyways.

Keep in mind its a gateway and not a router. A gateway has a modem and router in one box. So if you end up adding a new router you will need to throw the Comcast gateway in to bridged mode or replace the modem part as well. 

 

21 hours ago, TinsellyCone241 said:

With my setup it's cheaper to rent Xfinity's router than to use my own

Im guessing you pay for unlimited data.