Joined: 13 Nov 2012
|Posted: Tue Nov 13, 2012 3:12 pm Post subject: proxy upnp requests
|I work on different network topology on a daily basis, and I happen to see an increasingly number of "double natted network" e.g. a laptop connected to Internet via two routers.
This happens for different reasons, but mainly because people like to stick with their own wireless router despite having received a fully functional one from the ISP. Thus the following scenario:
|Internet ---- Router ISP ---- Router User ---- laptop |
In the above scenario let's take that router ISP can not work in bridge/modem mode and will have to do NAT.
So, to cut a long story short we get a public IP translated into a private IP by *router ISP* and a private IP translated into another private IP by the *router user*
|Internet ---- 220.127.116.11 / 192.168.0.1 ---- 192.168.0.2/192.168.1.1 ---- 192.168.1.100 |
And... it works! I mean, the web works of course but upnp port mapping of software on the laptop goes as far as *router user*.
The missing part would be to have miniupnp working in "proxy mode" on *router user*.
proxy mode would map a port as requested by the laptop on *router user* and forward the request to *router ISP*.
A manual config of port forwarding in this scenario works perfectly but we all know the importance of upnp!
If you are concern about security you could have an option to enable proxy-upnp only if the wan ip (where to forward the requests) is a private IP (RFC 1918)
What do you think?