Arris BGW210-700, IP passthrough, and subnets











up vote
0
down vote

favorite












I've got an Arris BGW210-700 residential gateway for an AT&T fiber connection to my house. Under Firewall > IP Passthrough, I have Allocation Mode set to Default Server and Default Server Internal Address set to the IP address of my own router (an Apple Time Capsule).



This set-up works, but I'd prefer the BGW210-700 to be in pure Passthrough mode, i.e., assign the publicly routable IP address to the WAN port of my Time Capsule. Currently, there's a double NAT happening because I'd prefer to configure my WiFi devices from the Time Capsule, so it manages the 192.168.2.x subnet for WiFi.



I can set Allocation Mode to Passthrough and Passthrough Fixed MAC Address to that of my Time Capsule.



My question is: if I do this and the publicly routable IP address is "passed through," then how can I access the BGW210-700 itself? (Currently, I access it via http://192.168.1.254.) I tried something like this once and the BGW210-700 became inaccessible. (I had to reset it to factory defaults to recover.)



The BGW210-700 has 4 ethernet ports on the back: one goes to the Time Capsule. Ideally, I want the other 3 ports to be on the 192.168.1.x subnet and the Time Capsule to serve the 192.168.2.x subnet without double NAT'ing (which IP Passthrough should give me). The devices on the two different subnets never need to talk to each other (with the exception of me being able to access the BGW210-700 itself via WiFi > Time Capsule).



Pictorially:



Fiber -> ONT -> BGW210-700

                * LAN: 192.168.1.254

                |

                +-> Other misc devices (via ethernet cables)

                |   * LAN: 192.168.1.x

                |   |

                |   +-> VOIP box

                |   +-> Security system box

                |   +-> ...

                |

                +-> Time Capsule

                    * LAN: 192.168.2.1

                    |

                    +-> True home network (via WiFi)

                        * LAN: 192.168.2.x

                        |

                        +-> Desktop computer

                        +-> Laptop computer

                        +-> ...


How can I do what I want?






networking router nat gateway time-capsule







share|improve this question




























    up vote
    0
    down vote

    favorite












    I've got an Arris BGW210-700 residential gateway for an AT&T fiber connection to my house. Under Firewall > IP Passthrough, I have Allocation Mode set to Default Server and Default Server Internal Address set to the IP address of my own router (an Apple Time Capsule).



    This set-up works, but I'd prefer the BGW210-700 to be in pure Passthrough mode, i.e., assign the publicly routable IP address to the WAN port of my Time Capsule. Currently, there's a double NAT happening because I'd prefer to configure my WiFi devices from the Time Capsule, so it manages the 192.168.2.x subnet for WiFi.



    I can set Allocation Mode to Passthrough and Passthrough Fixed MAC Address to that of my Time Capsule.



    My question is: if I do this and the publicly routable IP address is "passed through," then how can I access the BGW210-700 itself? (Currently, I access it via http://192.168.1.254.) I tried something like this once and the BGW210-700 became inaccessible. (I had to reset it to factory defaults to recover.)



    The BGW210-700 has 4 ethernet ports on the back: one goes to the Time Capsule. Ideally, I want the other 3 ports to be on the 192.168.1.x subnet and the Time Capsule to serve the 192.168.2.x subnet without double NAT'ing (which IP Passthrough should give me). The devices on the two different subnets never need to talk to each other (with the exception of me being able to access the BGW210-700 itself via WiFi > Time Capsule).



    Pictorially:



    Fiber -> ONT -> BGW210-700
    
                * LAN: 192.168.1.254
    
                |
    
                +-> Other misc devices (via ethernet cables)
    
                |   * LAN: 192.168.1.x
    
                |   |
    
                |   +-> VOIP box
    
                |   +-> Security system box
    
                |   +-> ...
    
                |
    
                +-> Time Capsule
    
                    * LAN: 192.168.2.1
    
                    |
    
                    +-> True home network (via WiFi)
    
                        * LAN: 192.168.2.x
    
                        |
    
                        +-> Desktop computer
    
                        +-> Laptop computer
    
                        +-> ...


    How can I do what I want?






    networking router nat gateway time-capsule







    share|improve this question


























      up vote
      0
      down vote

      favorite









      up vote
      0
      down vote

      favorite











      I've got an Arris BGW210-700 residential gateway for an AT&T fiber connection to my house. Under Firewall > IP Passthrough, I have Allocation Mode set to Default Server and Default Server Internal Address set to the IP address of my own router (an Apple Time Capsule).



      This set-up works, but I'd prefer the BGW210-700 to be in pure Passthrough mode, i.e., assign the publicly routable IP address to the WAN port of my Time Capsule. Currently, there's a double NAT happening because I'd prefer to configure my WiFi devices from the Time Capsule, so it manages the 192.168.2.x subnet for WiFi.



      I can set Allocation Mode to Passthrough and Passthrough Fixed MAC Address to that of my Time Capsule.



      My question is: if I do this and the publicly routable IP address is "passed through," then how can I access the BGW210-700 itself? (Currently, I access it via http://192.168.1.254.) I tried something like this once and the BGW210-700 became inaccessible. (I had to reset it to factory defaults to recover.)



      The BGW210-700 has 4 ethernet ports on the back: one goes to the Time Capsule. Ideally, I want the other 3 ports to be on the 192.168.1.x subnet and the Time Capsule to serve the 192.168.2.x subnet without double NAT'ing (which IP Passthrough should give me). The devices on the two different subnets never need to talk to each other (with the exception of me being able to access the BGW210-700 itself via WiFi > Time Capsule).



      Pictorially:



      Fiber -> ONT -> BGW210-700
      
                * LAN: 192.168.1.254
      
                |
      
                +-> Other misc devices (via ethernet cables)
      
                |   * LAN: 192.168.1.x
      
                |   |
      
                |   +-> VOIP box
      
                |   +-> Security system box
      
                |   +-> ...
      
                |
      
                +-> Time Capsule
      
                    * LAN: 192.168.2.1
      
                    |
      
                    +-> True home network (via WiFi)
      
                        * LAN: 192.168.2.x
      
                        |
      
                        +-> Desktop computer
      
                        +-> Laptop computer
      
                        +-> ...


      How can I do what I want?






      networking router nat gateway time-capsule







      share|improve this question















      I've got an Arris BGW210-700 residential gateway for an AT&T fiber connection to my house. Under Firewall > IP Passthrough, I have Allocation Mode set to Default Server and Default Server Internal Address set to the IP address of my own router (an Apple Time Capsule).



      This set-up works, but I'd prefer the BGW210-700 to be in pure Passthrough mode, i.e., assign the publicly routable IP address to the WAN port of my Time Capsule. Currently, there's a double NAT happening because I'd prefer to configure my WiFi devices from the Time Capsule, so it manages the 192.168.2.x subnet for WiFi.



      I can set Allocation Mode to Passthrough and Passthrough Fixed MAC Address to that of my Time Capsule.



      My question is: if I do this and the publicly routable IP address is "passed through," then how can I access the BGW210-700 itself? (Currently, I access it via http://192.168.1.254.) I tried something like this once and the BGW210-700 became inaccessible. (I had to reset it to factory defaults to recover.)



      The BGW210-700 has 4 ethernet ports on the back: one goes to the Time Capsule. Ideally, I want the other 3 ports to be on the 192.168.1.x subnet and the Time Capsule to serve the 192.168.2.x subnet without double NAT'ing (which IP Passthrough should give me). The devices on the two different subnets never need to talk to each other (with the exception of me being able to access the BGW210-700 itself via WiFi > Time Capsule).



      Pictorially:



      Fiber -> ONT -> BGW210-700
      
                * LAN: 192.168.1.254
      
                |
      
                +-> Other misc devices (via ethernet cables)
      
                |   * LAN: 192.168.1.x
      
                |   |
      
                |   +-> VOIP box
      
                |   +-> Security system box
      
                |   +-> ...
      
                |
      
                +-> Time Capsule
      
                    * LAN: 192.168.2.1
      
                    |
      
                    +-> True home network (via WiFi)
      
                        * LAN: 192.168.2.x
      
                        |
      
                        +-> Desktop computer
      
                        +-> Laptop computer
      
                        +-> ...


      How can I do what I want?






      networking router nat gateway time-capsule




      networking router nat gateway time-capsule






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited Nov 27 at 21:57

























      asked Nov 21 at 14:27









      Paul J. Lucas

      1265




      1265



























          active

          oldest

          votes











          Your Answer








          StackExchange.ready(function() {
          var channelOptions = {
          tags: "".split(" "),
          id: "3"
          };
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function() {
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled) {
          StackExchange.using("snippets", function() {
          createEditor();
          });
          }
          else {
          createEditor();
          }
          });

          function createEditor() {
          StackExchange.prepareEditor({
          heartbeatType: 'answer',
          convertImagesToLinks: true,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: 10,
          bindNavPrevention: true,
          postfix: "",
          imageUploader: {
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          },
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          });


          }
          });














          draft saved

          draft discarded


















          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1377299%2farris-bgw210-700-ip-passthrough-and-subnets%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown






























          active

          oldest

          votes













          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes
















          draft saved

          draft discarded




















































          Thanks for contributing an answer to Super User!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.





          Some of your past answers have not been well-received, and you're in danger of being blocked from answering.


          Please pay close attention to the following guidance:


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1377299%2farris-bgw210-700-ip-passthrough-and-subnets%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          -

          Popular posts from this blog

          QoS: MAC-Priority for clients behind a repeater

          Image
          1 1 I've setup a wireless network using a Linksys-Router (DD-WRT) as an AP and a TP-Link repeater for range extension. To manage bandwith for specific users, I've setup QoS-Rules on the AP (DD-WRT) using MAC-Priority: However the AP shows only the Repeater's MAC and the MACs of users inside the AP-Range. The MAC addresses of users behind the Repeater are not listed : The purple MAC is not listed in the AP-Clientlist. Its related to a device connected via the TP-Link repeater. Q: How can I setup MAC-Priority for repeater-clients? Do I simply add the purple MAC in AP-MAC priority list although it's not listed as a client? I want to setup specific priority instead of giving one priority for all clients behind the repeater by adding the repeater's MAC in the MAC priority list in the AP as
          Read more

          Ивакино (Тотемский район)

          Image
          У этого топонима есть и другие значения, см. Ивакино. Деревня Ивакино 59°42′01″ с. ш. 42°01′36″ в. д. H G Я O Страна Россия   Россия Субъект Федерации Вологодская область Муниципальный район Тотемский район Сельское поселение Погореловское История и география Тип климата умеренно-континентальный Часовой пояс UTC+3 Население Население 33 человека ( 2002 ) Национальности русские Цифровые идентификаторы Почтовый индекс 161327 Код ОКАТО 19 246 848 008 Код ОКТМО 19 646 448 136 Прочее Рег. номер 6261 Показать/скрыть карты Ивакино Ивакино Ивакино Ивакино — деревня в Тотемском районе Вологодской области. Входит в состав Погореловского сельского поселения [1] , с точки зрения административно-территориального деления — в Погореловский сельсовет. Расстояние по автодороге до районного центра Тотьмы — 61,5 км, до центра муниципального образования деревни Погорелово — 1,5 км.
          Read more

          Can't locate Autom4te/ChannelDefs.pm in @INC (when it definitely is there)

          Image
          up vote 1 down vote favorite I've been running into trouble running make for a build process that I know works on a 32-bit Ubuntu VM. I am running a 64-bit Ubuntu VM, and I have a feeling that the 64-bit may be the problem, but am not entirely sure. Basically, when I run the make command, I get the following error: Can't locate Autom4te/ChannelDefs.pm in @INC (@INC contains: [...]/staging_dir/host/share/autoconf /etc/perl /usr/local/lib/perl/5.14.2 /usr/local/share/perl/5.14.2 /usr/lib/perl5 /usr/share/perl5 /usr/lib/perl/5.14 /usr/share/perl/5.14 /usr/local/lib/site_perl .) at [...]/staging_dir/host/bin/autoreconf line 40. Now if I navigate to [...]/staging_dir/host/share/autoconf I can see that, contrary to what autoreconf thinks, Autom4te/ChannelDefs.pm definitely exists, so I don't really understand what
          Read more