Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    UPnP & NAT-PMP in High Availability Setup

    Scheduled Pinned Locked Moved HA/CARP/VIPs
    2 Posts 2 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      spunky_surveyor
      last edited by

      I have a pair of netgate appliances working rather well with a number of LAN subnets and WAN addresses. However I am having some issues with UPnP. Based on Reading the docs I specified the CARP WAN address as an override, but other than that everything is enabled and at its out of box defaults. Is there anything different that needs to be done to get UPnP in a HA setup?
      Thanks!

      I 1 Reply Last reply Reply Quote 0
      • I
        im.thatoneguy @spunky_surveyor
        last edited by im.thatoneguy

        @spunky_surveyor It appears that even if you specify

        listening_ip=eth0/24

        in

        /var/etc/miniupnpd.conf

        it won't bind to the CARP VIP.

        As a result UPnP will work with some applications that don't mind the fact that the router IP advertises itself. But NAT-PMP and many others will fail because the VIP isn't getting picked up by the miniupnp daemon. This appears to be fixed in miniupnp upstream and is an old bug in PFSense due to an ancient historical lack of multicast support in CARP VIPs.

        A workaround for NAT-PMP is to create a NAT Port Forward for:

        CARP IP : UDP 5351 to Router IP : UPD 5351

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.