I have read most of the threads here on CPD (and others) in hopes of finding a solution to a problem I am having with playing and hosting C4 through a Linksys router and using Zone Alarm Pro.

Specs-
Linksys BEFW11S4 v.2
Zone Alarm Pro (ZAP) - 6.1.737.000 (just purchased and upgraded from expired one)
C4 ports 17200-17250
Windows XP Pro with it's inherant Firewall turned off.
No "host" nor "lmhosts" files (thanks RAB)
My PC is a wired connection to the router not wirelsess

First - If I turn off ZAP and turn on DMZ for my PC through the router, I can host and join to my hearts content.

However, I don't want to leave myself wide open through the router nor open to attacks with the firewall down. So:

I started my trouble shooting with the ZAP off until I could get the router setup correctly without using DMZ. I have tried many different configurations on the router without using the dmz.

Port Forwarding - The manual says that in order to use Port Forwarding, I must use a static IP in win XP Pro and set it up for my PC in the router, which I did.
Port forwarding: Name C4 - Ext.Port 17200 to 17250 - Protocal TCP and Protocal UDP both checked - IP address (192.168.1.my PC) - Enable checked.
That didn't work, so I went to Port Triggering.

Port Triggering - The manual says that it doesn't matter if the PC or OS is static or not for port triggering, so I left my PC on the static IP I set for it. There ae user forums that continue to repeat that you should not use Port forwarding and port triggering together, expecailly for the same ports. So I took out all the port forwarding entries and put the apropriate entries into port triggering. (These looked more like what I was used to on other routers anyway).
App name C4 - Trigger Port Range 17200~17250 - Incoming Port Range 17200~17250.
That seemed to work with the tool, ShieldsUP, from http://www.grc.com/default.htm (mentioned in another forum) for testing my open ports from outside my PC and router. However, the ports may be open and the game is visible on Nova's public server, but no one can join if I host.
Bottom line for router, Do I have to use DMZ and leave myself wide open?

Now onto the firewall ZAP? I of course fried ZAP after first trying the Port Forwarding and Port Triggering by themselves, but still no luck. So, I used the DMZ, which I know works on the router, but can't get through the ZAP, without turning it off.
ZAP setting - I gave c4.exe and c4lan.exe access to everything in my home to include the kitchen sink. Still no good. Tried offering it coffee or candy or money and I think it got mad at me.
I then went to the ZA forums and they suggested "expert rules". The non documented settings and the very poorly described settings from their online "help Me" pages. A couple forum helpers tole me I didn't need expert rules, but gave me some tips on trying to set them up anyway. That didn't work!!

I really don't want to turn on DMZ and turn off the firewall.

Is there anyone out there in "help this poor guy out land" that can suggest something other than getting a new router and/or a new firewall? And don't even dare mention stop playing C4. I think the others in this forum (along with me) might cause virtual bodily harm to you if you did. haha

:( Pwweeeze?

I have a suggestion..serioulsy...stop playing C4!:wink1:

No...have you tried a different firewall? I use sygate, which is free and it seems to configure better then zap. I stopped using zap a long time ago when I would run into little problems here and there with it.

I'm no where near expert or do I claim to know what I'm talking about most of the time but I like to make suggestions now and again and hope it will lead people to a better solution...:nixweiss.gif:

There ae user forums that continue to repeat that you should not use Port forwarding and port triggering together


Huh I wonder why?? I use them both on my linksys BEFSR41 wired model for
teamspeak and P2P software programs.

Charger, Thanks for the suggestion. Your right I will just uninstall and quit playing C4 all together.
.
.
.
.
.
.
.
Are you crazy??? (don't answer that we all know anyway). How could you? Let me get my baseball bat, or pea shooter, or pellet gun, or my AK, or or or.... you should be ashamed of yourself even thinking such a thing!!! haha


JJG43, how can you hang around with such people like Charger? I was really starting to respect you. Now I'll have to rip your name out of the respect list and put it in with the crazy people I know (and that section is overloaded as it is). haha

But seriously, you two. Thanks for the suggestions. Chargers reply mentioned the "change of the guard". But he failed to notice that I was having problems with the router, before I even had turned on the firewall. I needed to resolve the router problem before going to the next step of the firewall. But he's always there for us and was trying to help as usual!

As for the port forwarding and port triggers being used at the same time being a no no. I don't know why they are saying that. But when your at your wits end (careful charger no comment please) and looking for any help you can get (I know you have both "been there done that") we all draw at any straw or bone thrown to us. So I had to try one at a time. It didn't work anyway.

OK, you both ready for the fix? Yes I got both the router and the ZAP (sorry charger gonna stick with the old trusted guard after all) working together. It was a tough collaboration, but they are both playing outside together very nicely right now. They might kill each other later, but for now they and I are happy campers! haha

"Yea Yea mac, shut up and tell us what you did to fix it". OK OK, keep your flight suits on.
Router first. For some reason no matter what I did using the standard C4 17200-17250, it wasn't working. But opening all the ports using the DMZ did. So I thought to myself (self I said) you should find out which set of ports was working and try those. So I went looking for a tool. I found a little freeware tool called "Active Ports" from Smartline Inc, (author- Ashot Oganesyan K), at http://www.protect-me.com/freeware.html. That tool let me see the ports that were opeing and closing when I opened C4 and tried to host. My port is always (shhhhh - don't tell anybody) 17479 UPD. Never the 17200-17250. So, I plugged that one in (actually to be safe a range from 17450-17500) into the port forward and BAM. I was able to host and join. Yes, JJ, I put it into the trigger also, but ended up taking it out after all was working fine without the dmz on. So now the router is fixed. And the outside door is closed.

Now onto the soft firewall Mr. Charger. I have to get the dog door closed to be safe don't I? As I said, I had been on other ZAP related forums asking the experts when, a guy that said he just got his ZAP and had never had a firewall before, replied: "Hey I might not know as much as the others out here and am a noob at ZA, but I had to turn on the ports in the internet zone for ZAP to work for my game. I don't even know what the "expert rules" stuff is. hope this helps"". Well of course I zipped my speedy little mouse right over to the internet zone of ZAP and found what he was talking about. Made the simple little settings (they were obvious) but no one had suggested doing anything in the "internet zone", (and that's my story I'm sticking with it). So the twighlight zone of ZAP was done. Now to see if it worked. I applied the settings, minimized ZAP, went out and tried to host without restarting and WAALAAA. The world of hosting on nova servers is now back "safely" in my toybox to play with once again. hehehaha

You knew it was going to end up being something simple. But finding the right simple was a needle in a haystack for this old coot.

Thank you ohh sooo much guys. I rally appreciate it, Rally I do! Cedric please give them something for there time. I'm off now, tada all.

As usual you two are always there to try and help!!!

Charger, I'm guessing I should leave this thread here for others to possibly benefit from if they run into the same circumstances? What do you think?

Mac