Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Multiple Xbox with uPnP how to

    Gaming
    1
    1
    920
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • N
      nettynet
      last edited by nettynet

      Hey all, I've seen some people frustrated with trying to get multiple Xboxs on one network/public IP working. I have it working on my pretty simple network with a single public IP, both xboxs on the same subnet and using uPnP instead of configuring static inbound ports. I am running pfsense 2.5.2 on a protectli box. Try the below and please let me know if it works. I tested with Halo Infinite successfully.

      1.) Add DHCP reservations for each xbox and note the IP address you chose. In this example I will use 10.0.0.11 for xbox 1 and 10.0.0.12 for xbox 2.

      2.) Configure your outbound NAT rules. Navigate to Firewall > NAT > Outbound > Select hybrid. Add a new rule to the top of the list. Add one rule for each xbox.
      Rule 1.)
      Interface: WAN
      Address Family: IPv4 and IPv6
      Source network: 10.0.0.11/32
      ensure to select Static Port by Port or Range settings
      Rule 2.)
      Interface: WAN
      Address Family: IPv4 and IPv6
      Source network: 10.0.0.12/32
      ensure to select Static Port by Port or Range settings

      3.) Configure your uPNP settings. Navigate to Services > UPnP & NAT-PMP Settings.
      a.) Check the top 3 options to Enable UPnP & NAT-PMP, Allow UPnP Port Mapping, and Allow NAT-PMP Port Mapping.
      b.) External interface: WAN
      c.) Internal interface: LAN (or your LAN interface, multiple can be selected)
      d.) Make one ACL entry in the uPNP ACL list for each xbox like this:
      allow 88-65535 10.0.0.11/32 88-65535
      allow 88-65535 10.0.0.12/32 88-65535

      4.) See if things are working now.

      Other notes if things aren't working yet:

      Ensure you have a firewall rule to allow each xbox to go out to any. This rule should just be the default for the LAN network but its good to ensure you don't have something blocking there

      You do not need any port forwarding or inbound NAT rules as this is what uPnP is doing for you dynamically (I have none at all in my config). If you have them try getting rid of them. There is no settings on the xboxes that need to be changed. Alternate port selection is not necessary as the xbox will just try another port if one is in use if it is set to automatic.

      I have seen where sometimes the xbox and pfsense firewall need to be rebooted before the xbox will show open NAT type. I have also seen where using Adguard DNS causes the NAT type test to fail. I have not had issues with Cloudflare 1.1.1.1. I know it's dumb and unrelated but it's probably just a domain adguard blocks that causes the test to fail.

      1 Reply Last reply Reply Quote 1
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.