Anyone running a playstation w/ PFS and not having difficulty connecting to sony



  • I am having difficulty with my ps3 connecting and gaming on the Sony Network.  I did a search and found that NAT type 3 can have some problems with the PS3.  So I configured PFS for NAT type 2.  I still can't connect to the Sony Network.

    Various Spots on the net said forward these ports to the PS3
    forward the following ports to your ps3 -

    TCP: 80, 443, 5223, and Port Range 10070 - 10080

    UDP: 3478, 3479, 3658, and 10070

    I did create firewall rules to forward these ports.  Any ideas?



  • I use UPnP and Advanced Outbound NAT for my PS3.

    *Make sure you enable UPnP in your PS3 Settings/Network Settings/Internet Connection Settings.

    In pfSense:

    Setup a static LAN IP address lease for your PS3 in the Services/DHCP Server section.

    Services/UPnP:

    Check Enable UPnP

    Select LAN in Interfaces

    The "by default deny access to UPnP" option is also checked and I then setup a permission in the UPnP Settings:
    "allow 3000-65535 aaa.bbb.ccc.ddd/32 3000-65535" using the PS3's static LAN IP in place of the aaa.bbb.ccc.ddd

    One more step to help in getting into online games quicker (like in COD4) is using static ports.

    Firewall/NAT/Outbound/Advanced Outbound NAT

    WAN    aaa.bbb.ccc.ddd/32    *    *    *    *    *    YES    PS3 AON

    I left the rest of the LAN to not use static ports.

    WAN    aaa.bbb.ccc.0/24        *    *    *    *    *    NO      LAN AON

    Solved all my problems with my PS3 using this setup.  NAT Type 2 and no problems with Voice Communication or finding online matches.

    Give it a whirl



  • Thanks!  I did what you said it still tests as NAT Type3 on the PS3 but I was able to join a match on the PS3 network.



  • If it still says NAT Type 3 then something is wrong with the way UPnP was configured.

    Does your PS3 show UPnP as Available where it shows you the NAT Type?



  • Yes it shows it as Not Available.  I'll recheck my settings and config in PFS.



  • Disable your Port Forward Settings for your PS3 in pfSense, all you need is UPnP and AON static ports like I described above.

    Now in your PS3 you also need to enable UPnP

    Settings/Network Settings/Internet Connection Settings/Yes

    Custom (Setting Method)
    Wired (or if Wireless, enter your SSID and security passphrases and then proceed to IP Address)
    Manual Settings (Operation Mode)
    Auto-Detect (Speed and Duplex)
    Automatic (IP Address)
    Do Not Set (DHCP Host Name)
    Automatic (DNS Setting)
    Automatic (MTU)
    Do Not Use (Proxy Server)
    Enable (UPnP)

    Then hit Enter to test, should show NAT Type 2 if you followed my other directions for enabling UPnP in your pfSense box.  Remove all your Port Forward settings that you created for the PS3



  • Thanks again, it shows NAT Type2 now.  I was hoping you might look at another post I made about a month ago and let me know if you might have an idea of how to solve this problem.

    http://forum.pfsense.org/index.php/topic,7012.msg39708.html#msg39708

    here is my old post

    I have a pfsense firewall setup at one location. The second location has a linksys wireless access point. I have a user who wants to set up a VPN Connection from behind (through) the linksys firewall to the pfsense firewall. They need to connect a PlayStation via the VPN to the second pfSense LAN firewall. They do not have admin rights to the linksys.

    Is there a way to set up a VPN Client on a PC behind the firewall on their LAN and then have the PC accept a connection from the playstation and route it over VPN client on a Win XP client to the OpenVPN Server?

    Or could you please recommend an alternate solution?

    Thanks



  • I dont see why VPN is necessary for remote LAN parties.  Seems to be a lot of work for something that is available already.  Setting up Private Games, and LAN parties for your remote online PS3 friends is already available as a feature in games like Rainbow Six:Vegas and Call of Duty 4 and I'm sure a bunch of other games as long as you have their PSN ID, and add them as friends.  I just dont see the purpose in gaming in an encrypted tunnel.

    If your friend, who doesnt have admin rights to the Linksys, cant get on games because the PS3 isnt properly DMZ'd in the Linksys, then a VPN is going to cause the same kind of problems without a firewall rule to allow the VPN port.

    Solution, dump the Linksys and install a pfSense box.  UPnP and AON will solve every problem you can think of with your PS3.



  • Yes I bet the VPN latency would be a killer.  I was thinking about the IPSEC passthru that these routers have, I am not knowledgeable about VPN's etc..  I was assuming that IPsec passthru may avoid the need for port Forwarding.  But in light of the latency I bet it would be a bad solution.

    I would help him implement pfSense but he does not own the linksys,  so It looks like we are out of options.



  • @onhel:

    I use UPnP and Advanced Outbound NAT for my PS3.

    *Make sure you enable UPnP in your PS3 Settings/Network Settings/Internet Connection Settings.

    In pfSense:

    Setup a static LAN IP address lease for your PS3 in the Services/DHCP Server section.

    Services/UPnP:

    Check Enable UPnP

    Select LAN in Interfaces

    The "by default deny access to UPnP" option is also checked and I then setup a permission in the UPnP Settings:
    "allow 3000-65535 aaa.bbb.ccc.ddd/32 3000-65535" using the PS3's static LAN IP in place of the aaa.bbb.ccc.ddd

    One more step to help in getting into online games quicker (like in COD4) is using static ports.

    Firewall/NAT/Outbound/Advanced Outbound NAT

    WAN    aaa.bbb.ccc.ddd/32    *    *    *    *    *    YES    PS3 AON

    I left the rest of the LAN to not use static ports.

    WAN    aaa.bbb.ccc.0/24        *    *    *    *    *    NO      LAN AON

    Solved all my problems with my PS3 using this setup.  NAT Type 2 and no problems with Voice Communication or finding online matches.

    Give it a whirl

    I tried everything outlined in this topic but I still can't get PS3 to work properly with UPNP and pfSense. I'm doing 2 Inet Connection Load Balancing on the pfSense box and I thought it would be best to get the Playstation a hard DHCP set IP and use UPNP in order to not put the  PS3 in a DMZ.

    In theory everything should be working - I've enabled the UPNP service on the pfSense box and on the PS3; The PS3 is allowed to use the UPNP; the pfSense box itself is in 2 DMZs - one for each Inet Connection… I've also tried adding a firewall rule to bypass load balancing just for the ps3 - that didn't work either...

    The problem is that when I do "test internet connection" on the PS3 it displays that NAT type is 3 and UPNP as "Unavailable" . Also in Status-> Upnp on pfSense box I see no activity...

    Any ideas??


Log in to reply