Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Random Source Port Causing High Ping in Games

    Scheduled Pinned Locked Moved NAT
    4 Posts 3 Posters 396 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • M
      mscaff
      last edited by mscaff

      Hey guys,

      I've been playing Battalion as of recent, when I begun playing I noticed on the FaceIt servers I would get high ping, like 250+, when I normally see about 65 MAX.

      I tested the latency to the game servers with the provider recommended tool located here:
      https://www.hiperz.com/hiperz_latency.php

      However in testing these, the test results came back fine with ping results as expected - 60 to 65.

      So I figured it couldn't be much else but possibly too strict firewalling, so I enabled static port on my outbound NAT with the source IP as my gaming PC and this resolved it, ping is normal and game performance is good.

      I then tested with WireShark and saw which ports the game uses for the connections to the FaceIt servers as they are not well documented, it appears the source port from the Game Client is also random, however its usually above 60000.

      Any recommendations here guys? Not sure how to approach this but enable static port for my particular PC.
      In enabling this, is it a security risk? What's the impact?

      Thanks!

      1 Reply Last reply Reply Quote 0
      • kiokomanK
        kiokoman LAYER 8
        last edited by

        you can also do a floating rules so the port will open only when needed and set the ip of the game server on the destination also create an alias with all the port you need

        ̿' ̿'\̵͇̿̿\з=(◕_◕)=ε/̵͇̿̿/'̿'̿ ̿
        Please do not use chat/PM to ask for help
        we must focus on silencing this @guest character. we must make up lies and alter the copyrights !
        Don't forget to Upvote with the 👍 button for any post you find to be helpful.

        1 Reply Last reply Reply Quote 0
        • M
          mscaff
          last edited by

          Thanks for your suggestion, however this has nothing to do with ports being open and more to do with source tracking and source port randomization.

          Hope I understood your suggestion?

          Thanks!

          1 Reply Last reply Reply Quote 0
          • KOMK
            KOM
            last edited by

            pfSense does not use static source ports by default due to a security risk that allows attackers to potentially use that to intercept data. I don't remember all the specifics as it was long ago tat I read that (assuming Im even remembering it correctly.)

            For your gaming purposes, there is nothing wrong security-wise with adding an outbound NAT rule to make traffic from your console use static ports.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.