Thomson TG585v7 Hell

Is it possible to block the router forwarding ports to anything using the Wireless? since the Games and Application sharing seems to work just fine for my computer I can check and see a port is blocked then add it and its not blocked but I’m trying to stop the NAT on my Xbox 360 from being Strict and it just won’t accept the ports.

Was wondering if there is some setting is say the user.ini when you backup the config fie.

Thanks this router truly is hell! Glad its not just me having trouble with it!

I’m not sure what you’re asking I’m afraid. What are you trying to do? Open up all ports to your XBox?

Trying to open the ports required for Xbox LIVE, Yes.

hi i have a ipod touch and it says i need a wifi code on the back of the tomson i have tried every code and cant connect what should i do?

Are you sure your entering the correct code? There should be a stick with an ESSID: which is the name of the wireless network and a WPA/WEP: key which is the password. Are you using wireless on anything else? If you are, its what you entered on that.

Well there are lots of instructions in these comments about opening up a device to all ports using a DMZ or you could just find out what ports it needs and forward those ports to your XBOX.

I have attempted every solution on this and other forums (using the CLI or Web) but my modem won’t forward the SSH port to an internal computer (I am attempting to establish a connection with a SSH enabled server from the Internet).

Some posts indicate that the reason is that the ISP (Prodigy o Telmex in Mexico) has configured the modem disallowing this.

I am reluctant to accept the fact that is impossible to modify the configuration to enable port forwarding, but before I invest more time I want to ask you people if this is in fact possible or if you can somehow help me.

Thanks and regards.

Hello Juan,

Sometimes an ISP will block incoming access at a level higher then your router, for example blocking it on their network.

Have you tried using a different port number?

Hi Lee, I have not tried using another port.

I doubt that the problem is that the port is blocked at a higher level as you suggest for the following reasons:

-) I have a second service (with a SpeedStream model), same ISP, same location, and use it on a regular basis to connect to my server without a problem.

-) After some tests, I have been able to get the following event from the security log while attempting an SSH connection to the modem public IP:

FIREWALL rule : Protocol: TCP Src ip: xxx.xxx.xxx.xxx Src port: 1671 Dst ip: 192.168.xxx.xxx Dst port: 22 Chain: forward_host_service Rule Id: 1 Action: accept

so, correct me if I am wrong, but this tells me that the connection is reaching the modem, the modem is accepting it, but somehow dropping it.

Thanks a lot.

That suggests that the firewall on your router is accepting and forwarding on the connection. Hence the Action: accept line.
Have you checked the settings on your destination? For example, the iptables on that server?

I would also suggest running a tcpdump on your SSH server. Something like:

tcpdump -i eth0 and port 22

If you can run the above command on the server console, rather then over SSH it will be better as you can avoid the noise from your own SSH connection being displayed.

If you can’t do it from the console, then you might be able to insert a src address into the tcpdump command to filter on the source.

Lee,

A couple of thoughts.

Why is it “Src port: 1671”, shouldn’t it be 22? Could it be the reason?

The command was:

:nat tmpladd intf=Internet outside_addr=0.0.0.1 inside_addr=192.168.xxx.xxx outside_port=22 inside_port=22

Under the hood, what is the difference between the NAT and Firewall systems on modules on the modem? I ask this because seems to me that:

1) What the nat command does is to add a firewall rule

2) If I disable the firewall, then I do not get any security events, and gues that the connection is not being accepted by the modem, but I could be wrong on this one.

Cheers.

I have to check the server configuration as you suggest. Since I can connect to it through the second connection (modem), I did not consider this a possibility (as far I remember the only security measure that I configured is hosts.deny, so no iptables).

I will get a chance to check this next week and report back.

Have a nice day.

Hi, the src port being 1671 is fine, that is the originating port, these can be anything generally. Its connection using port 1671 from the soure machine and the target port is port 22. This is normal.

You can see what ports you’re connecting out from any machine by using the netstat command.

NAT is what translates a port, so you could for example open up port 22 on your firewall, but if you don’t have a NAT rule to tell it to then pass on to machine X it will just hit the router and sit there. Normally web interfaces open up the port and setup the NAT rule for you. So its doing two things.

If you disable the firewall on your SSH server, does it work? Also, just check that you can connect to port SSH in your network.

OK, tcpdump should still give you some output if it is hitting the server. This should give you an idea where the fault lies.

Hi Lee

I’m trying to access an external VPN connection from my Vista laptop, sitting inside a Thomson O2wireless router, with AVG Business Ed. The VPN connection works fine in other locations, just not at home.

I’ve managed to set up a new SuperUser on the router with my name and password – am not using Administrator
The loopback=enable command seems to be successful
However, I still get ” failed to delete interface group from the unknown service access list” when I try and enter “service system ifdelete name=PPTP group=wan”. Even after restarting my router, I can’t still connect to my VPN
I’ve tried telnet 1723 and got “could not connect to the host, on port 23: Connect failed”
I’ve tried allowing port 1723 through my firewall, and disabling the firewall for my VPN connnection

I’ve tried nmap but only got the following open ports
21/tcp open ftp
23/tcp open telnet
80/tcp open http
443/tcp open https

I’ve also tried adding an “application & game” in the router Toolbox, with port forwarding of 1723, fixing my IP, and assigning this new application to my laptop

Would you be able to diagnose what my problem is, and the sequence of code / procedures I should use to access my VPN? Many thanks in advance….

First thing I notice is that it seems you ran the telnet command incorrectly if you received that error. You should hqve a space between the IP address and the port. For example:

telnet 1.2.3.4 1723

Try that first. Regarding the unknown services error, could be its a different name, try and find a command which lists them.

Normally errors with vpn connections is something called VPN pass through. See if there is an option for this in the web interface.

I left a space between the IP and port when I orginally tried it I’m afraid (i.e. same errors have appeared when I double checked)

There’s no option in the web interface for enabling VPN passthrough – is there any way of manually forcing the router to allow this?

Hi Lee,
i have thomson speedtouch ST585, ver 6.2.17.5 (that what i see in homepage of my speedtouch.
i need to connect this router+mode, to my linux box (ubuntu 10.4)

I can surf internet using that router, and when i try the wan ip, it show speedtouch page.

when i test using whatsmyip.org, scan port 80, it say close.

how i can configure my speedtouch, so the port 80 is open?

thanks for any info/ help

I found a few people with issues of the same type online and they seem to suggest that there is no VPN Passthrough option either. I’m not sure to be honest, I’ve not tried it in this setup. Have you updated the firmware just incase it was fixed in a later release?

What are you trying to do? Are you trying to run a web server from your Ubuntu PC?

Hi Lee,
yes, i want my webserver from ubuntu accessible from outside. the webserver work well in lan (example 192.168.1.10)

Try changing the port that your router listens on for the management page from port 80 to maybe 8080. Then forward port 80 through the router firewall to tour ubuntu machine.

Hi Lee

I fixed it by “down-dating” the firmware on my router to an older version – it now works fine! O2 must have blocked VPN passthrough in a recent firmware update

Thank you. Thank you. Thank you. My old router worked fine and I thought that it would be simple to open the port up on the new router. Still, at least I only wasted 3 hours of my life before finding this post, unlike some other less fortunate people.

No problem, glad my afternoon wasted on this router is still helping people :)

Hi Lee

I am having issues getting onto Remote Web Workplace SBS2003 through this router, I telnetted to the device and disabled the firewall

When i try to connect to remote web workplacce using the https:// i just get the internet cannot diaplay webpage

Any ideas on where I am going wrong here?

I tried your service system ifdelete name=HTTPs group=wan
saveall command but it threw error “Failed to delete interface group from unknown service access list”??

Any suggestions would be much appreciated

Thanks

Potential the service group has changed. See if there is a command to list the groups and then apply it against the most obvious.

The is a command “config dump” which lists everything as below

I do not know what is the most obvious as I have never had to deal with this stuff for simple job such as port forwarding or disabling a firewall on a router, do you have any idea?

ifadd name=HTTPs group=lan seems the most obvious, when i ran the ifdelete command on this though is just allowed me to connect to the router with having to type :51003 after the IP so I think it allowed me to connect to it through port 80 after i ran this? All very complex for what should be a simple task?

rule add name=”Heretic II” protocol=tcp portrange=28910-28910
rule add name=”Heretic II” protocol=udp portrange=28910-28910
rule add name=”Hexen II” protocol=tcp portrange=26900-26900
rule add name=”Hexen II” protocol=udp portrange=26900-26900
rule add name=”IL 2″ protocol=udp portrange=21000-21000
rule add name=”IPSEC – IKE” protocol=tcp portrange=500-500
rule add name=”IPSEC – IKE” protocol=udp portrange=500-500
rule add name=”IPSEC – IKE” protocol=tcp portrange=4500-4500
rule add name=”IPSEC – IKE” protocol=udp portrange=4500-4500
rule add name=KALI protocol=tcp portrange=2213-2213
rule add name=KALI protocol=udp portrange=2213-2213
rule add name=KALI protocol=tcp portrange=6666-6666
rule add name=KALI protocol=udp portrange=6666-6666
rule add name=Laplink protocol=tcp portrange=1547-1547
rule add name=Laplink protocol=udp portrange=1547-1547
rule add name=Links protocol=tcp portrange=47624-47624
rule add name=Links protocol=tcp portrange=2300-2400
rule add name=Links protocol=udp portrange=2300-2400
rule add name=Links protocol=udp portrange=6073-6073
rule add name=”Lock On” protocol=tcp portrange=10308-10308
rule add name=”Lock On” protocol=udp portrange=10308-10308
rule add name=”Lotus Notes” protocol=tcp portrange=1352-1352
rule add name=”Lotus Notes” protocol=udp portrange=1352-1352
rule add name=Moove protocol=tcp portrange=9793-9793
rule add name=Moove protocol=tcp portrange=9795-9795
rule add name=”MSN Game Zone” protocol=tcp portrange=6667-6667
rule add name=”MSN Game Zone” protocol=udp portrange=6667-6667
rule add name=”MSN Game Zone” protocol=tcp portrange=28800-29000
rule add name=”MSN Game Zone” protocol=udp portrange=28800-29000
rule add name=”MSN Messenger” protocol=tcp portrange=1863-1863
rule add name=”MSN Messenger” protocol=tcp portrange=6891-6900
rule add name=”MSN Messenger” protocol=tcp portrange=6901-6901
rule add name=”MSN Messenger” protocol=udp portrange=6901-6901
rule add name=”MSN Game Zone (DX)” protocol=tcp portrange=2300-2400
rule add name=”MSN Game Zone (DX)” protocol=udp portrange=2300-2400
rule add name=”MSN Game Zone (DX)” protocol=tcp portrange=47624-47624
rule add name=”MSN Game Zone (DX)” protocol=udp portrange=47624-47624
rule add name=Myth protocol=tcp portrange=3453-3453
rule add name=Myth protocol=udp portrange=3453-3453
rule add name=”Need for Speed” protocol=tcp portrange=9442-9442
rule add name=”Need for Speed” protocol=udp portrange=9442-9442
rule add name=”Need for Speed 3″ protocol=tcp portrange=1030-1030
rule add name=”Need for Speed 3″ protocol=udp portrange=1030-1030
rule add name=”Need for Speed – Underground” protocol=udp portrange=3658-3659
rule add name=”Need for Speed – Underground” protocol=tcp portrange=10900-10999
rule add name=”Neverwinter Nights” protocol=udp portrange=5120-5300
rule add name=”Neverwinter Nights Gamespy” protocol=tcp portrange=6500-6500
rule add name=”Neverwinter Nights Gamespy” protocol=udp portrange=6500-6500
rule add name=”Neverwinter Nights Gamespy” protocol=tcp portrange=6667-6667
rule add name=”Neverwinter Nights Gamespy” protocol=udp portrange=6667-6667
rule add name=”Neverwinter Nights Gamespy” protocol=tcp portrange=27900-27900
rule add name=”Neverwinter Nights Gamespy” protocol=udp portrange=27900-27900
rule add name=”Neverwinter Nights Gamespy” protocol=tcp portrange=28900-28900
rule add name=”Neverwinter Nights Gamespy” protocol=udp portrange=28900-28900
rule add name=”Neverwinter Nights Gamespy” protocol=tcp portrange=29900-29901
rule add name=”Neverwinter Nights Gamespy” protocol=udp portrange=29900-29901
rule add name=”Neverwinter Nights Gamespy” protocol=tcp portrange=13139-13139
rule add name=”Neverwinter Nights Gamespy” protocol=udp portrange=13139-13139
rule add name=NetMeeting protocol=tcp portrange=1720-1720
rule add name=”NTP Server” protocol=tcp portrange=123-123
rule add name=”NTP Server” protocol=udp portrange=123-123
rule add name=”Time Server (NTP)” protocol=tcp portrange=123-123
rule add name=”Time Server (NTP)” protocol=udp portrange=123-123
rule add name=OpenFT protocol=tcp portrange=1215-1216
rule add name=OpenFT protocol=udp portrange=1215-1216
rule add name=Outlaws protocol=tcp portrange=5310-5310
rule add name=Outlaws protocol=udp portrange=5310-5310
rule add name=PalTalk protocol=tcp portrange=2095-2095
rule add name=PalTalk protocol=tcp portrange=2090-2091
rule add name=PalTalk protocol=udp portrange=2090-2091
rule add name=”PC Anywhere” protocol=tcp portrange=5631-5632
rule add name=”PC Anywhere” protocol=udp portrange=5631-5632
rule add name=”POP3 Server” protocol=tcp portrange=110-110
rule add name=”POP3 Server” protocol=udp portrange=110-110
rule add name=”PPTP Server” protocol=tcp portrange=1723-1723
rule add name=”Quake 3″ protocol=tcp portrange=27660-27692
rule add name=”Quake 3″ protocol=udp portrange=27660-27692
rule add name=”Rainbow Six” protocol=tcp portrange=2346-2346
rule add name=”Rainbow Six” protocol=udp portrange=2346-2346
rule add name=”Realm Games (Blizzard)” protocol=tcp portrange=4000-4000
rule add name=”Remote Anything” protocol=tcp portrange=3996-4000
rule add name=”Remote Anything” protocol=udp portrange=3996-4000
rule add name=RemotelyAnywhere protocol=tcp portrange=2000-2000
rule add name=RemotelyAnywhere protocol=udp portrange=2000-2000
rule add name=”Microsoft Remote Desktop” protocol=tcp portrange=3389-3389
rule add name=”Microsoft Remote Desktop” protocol=udp portrange=3389-3389
rule add name=”Rogue Spear” protocol=tcp portrange=2346-2346
rule add name=”Rogue Spear” protocol=udp portrange=2346-2346
rule add name=”Rome Total War” protocol=udp portrange=6500-6500
rule add name=”Rome Total War” protocol=udp portrange=13139-13139
rule add name=”Rome Total War” protocol=tcp portrange=26220-26220
rule add name=”Rome Total War” protocol=udp portrange=26220-26220
rule add name=”Silent Hunter II” protocol=tcp portrange=3000-3000
rule add name=”Silent Hunter II” protocol=udp portrange=3000-3000
rule add name=Shareaza protocol=tcp portrange=6346-6346
rule add name=Shareaza protocol=udp portrange=6346-6346
rule add name=”Shiva VPN” protocol=tcp portrange=2233-2233
rule add name=”Shiva VPN” protocol=udp portrange=2233-2233
rule add name=”SMTP Server” protocol=tcp portrange=25-25
rule add name=”SMTP Server” protocol=udp portrange=25-25
rule add name=”Mail Server (SMTP)” protocol=tcp portrange=25-25
rule add name=”Mail Server (SMTP)” protocol=udp portrange=25-25
rule add name=”Soldier of Fortune” protocol=tcp portrange=20100-20100
rule add name=”Soldiers: Heroes of World War II” protocol=udp portrange=2302-230
2
rule add name=”Soldiers: Heroes of World War II” protocol=udp portrange=6073-607
3
rule add name=Soulseek protocol=tcp portrange=2234-2234
rule add name=”Starsiege Tribes” protocol=udp portrange=27999-29000
rule add name=”Steam Games” protocol=tcp portrange=27030-27039
rule add name=”Steam Games” protocol=udp portrange=1200-1200
rule add name=”Steam Games” protocol=udp portrange=27000-27015
rule add name=”Tiberian Sun” protocol=tcp portrange=1140-1234
rule add name=”Tiberian Sun” protocol=udp portrange=1140-1234
rule add name=”Tiberian Sun” protocol=tcp portrange=4000-4000
rule add name=”Tiberian Sun” protocol=udp portrange=4000-4000
rule add name=Ultima protocol=tcp portrange=5001-5010
rule add name=Ultima protocol=udp portrange=5001-5010
rule add name=Ultima protocol=tcp portrange=7775-7777
rule add name=Ultima protocol=udp portrange=7775-7777
rule add name=Ultima protocol=tcp portrange=7875-7875
rule add name=Ultima protocol=udp portrange=7875-7875
rule add name=Ultima protocol=tcp portrange=8800-8900
rule add name=Ultima protocol=udp portrange=8800-8900
rule add name=Ultima protocol=tcp portrange=9999-9999
rule add name=Ultima protocol=udp portrange=9999-9999
rule add name=”Unreal Tournament” protocol=tcp portrange=7777-7783
rule add name=”Unreal Tournament” protocol=udp portrange=7777-7783
rule add name=”Unreal Tournament” protocol=tcp portrange=8080-8080
rule add name=”Unreal Tournament” protocol=udp portrange=8080-8080
rule add name=”Unreal Tournament” protocol=tcp portrange=27900-27900
rule add name=”Unreal Tournament” protocol=udp portrange=27900-27900
rule add name=”Unreal Tournament 2004″ protocol=tcp portrange=28902-28902
rule add name=”Unreal Tournament 2004″ protocol=udp portrange=7777-7783
rule add name=”Unreal Tournament 2004″ protocol=udp portrange=7787-7787
rule add name=VNC protocol=tcp portrange=5500-5500
rule add name=VNC protocol=udp portrange=5500-5500
rule add name=VNC protocol=tcp portrange=5800-5800
rule add name=VNC protocol=udp portrange=5800-5800
rule add name=VNC protocol=tcp portrange=5900-5900
rule add name=VNC protocol=udp portrange=5900-5900
rule add name=”Warcraft III” protocol=tcp portrange=6112-6119
rule add name=”Win MX” protocol=tcp portrange=6699-6699
rule add name=”Win MX” protocol=udp portrange=6257-6257
rule add name=”World of Warcraft” protocol=tcp portrange=3724-3724
rule add name=”World of Warcraft” protocol=tcp portrange=8086-8086
rule add name=”World of Warcraft” protocol=tcp portrange=8087-8087
rule add name=”World of Warcraft” protocol=tcp portrange=9081-9081
rule add name=”World of Warcraft” protocol=tcp portrange=9090-9090
rule add name=”World of Warcraft” protocol=tcp portrange=9091-9091
rule add name=”World of Warcraft” protocol=tcp portrange=9100-9100
rule add name=XBConnect protocol=tcp portrange=8602-8602
rule add name=XBConnect protocol=udp portrange=8602-8602
rule add name=”Xbox Live” protocol=udp portrange=88-88
rule add name=”Xbox Live” protocol=tcp portrange=2074-2074
rule add name=”Xbox Live” protocol=udp portrange=2074-2074
rule add name=”Xbox Live” protocol=tcp portrange=3074-3074
rule add name=”Xbox Live” protocol=udp portrange=3074-3074
rule add name=”Microsoft Terminal Server” protocol=tcp portrange=3389-3389 trigg
erport=3389 triggerprotocol=tcp
rule add name=Napster protocol=udp portrange=6699-6699 triggerport=6699 triggerp
rotocol=tcp
rule add name=”Westwood Online” protocol=tcp portrange=4000-4000 triggerport=400
0
rule add name=”Westwood Online” protocol=tcp portrange=1140-1234 triggerport=400
0 triggerprotocol=tcp
rule add name=”Westwood Online” protocol=udp portrange=1140-1234 triggerport=400
0 triggerprotocol=tcp
rule add name=”RealAudio Server” protocol=tcp portrange=7070-7070
rule add name=”RTSP Server” protocol=tcp portrange=554-554
rule add name=”ILS Server” protocol=tcp portrange=389-389
rule add name=”NNTP Server” protocol=tcp portrange=119-119
rule add name=”NNTP Server” protocol=udp portrange=119-119
rule add name=”News Server (NNTP)” protocol=tcp portrange=119-119
rule add name=”News Server (NNTP)” protocol=udp portrange=119-119
rule add name=KaZaA protocol=tcp portrange=1214-1214
rule add name=iMesh protocol=tcp portrange=1214-1214
rule add name=RDP protocol=tcp portrange=3389-3389
rule add name=HTTPS protocol=tcp portrange=443-443
rule add name=RWW protocol=tcp portrange=4125-4125
assign name=HTTPS host=192.168.16.1 log=disabled
assign name=RDP host=192.168.16.1 log=disabled
assign name=RWW host=192.168.16.1 log=disabled

[ fwlevel.ini ]
add name=BlockAll index=1 readonly=enabled udptrackmode=strict service=disabled
proxy=disabled text=”Use this Security Level to block all traffic from and to th
e Internet. Game & Application sharing is not allowed by the firewall.”
add name=Standard index=2 readonly=enabled udptrackmode=loose service=enabled pr
oxy=enabled text=”Use this Security Level to allow all outgoing connections and
block all incoming traffic. Game & Application sharing is allowed by the firewal
l..”
add name=Disabled index=3 readonly=enabled udptrackmode=loose service=enabled pr
oxy=enabled text=”Disable the firewall. All traffic is allowed to pass through y
our SpeedTouch. Game & Application sharing is allowed by the firewall.”
set name=Standard

[ firewall.ini ]
config state=disabled keep=disabled tcpchecks=none udpchecks=enabled icmpchecks=
enabled logdefault=disabled logthreshold=enabled tcpwindow=65536
debug traceconfig tcpchecks=disabled udpchecks=disabled icmpchecks=disabled sink
=none forward=none source=none
rule add chain=source_fire index=1 name=AnyTraffic log=disabled state=enabled ac
tion=accept
rule add chain=forward_level_BlockAll index=1 name=AnyTraffic log=disabled state
=enabled action=drop
rule add chain=forward_level_Standard index=1 name=FromLAN srcintf=lan log=disab
led state=enabled action=accept
rule add chain=forward_level_Disabled index=1 name=AnyTraffic log=disabled state
=enabled action=accept

[ servmgr.ini ]
ifadd name=PPTP group=lan
ifadd name=HTTP group=lan
ifadd name=HTTPs group=lan
ifadd name=FTP group=lan
ifadd name=FTP group=wan
ifadd name=TELNET group=lan
ifadd name=TELNET group=wan
ifadd name=DNS-S group=lan
ifadd name=SNMP_AGENT group=lan
ifadd name=SSDP group=lan
ifadd name=MDAP group=lan
ifadd name=PING_RESPONDER group=lan
ifadd name=PING_RESPONDER group=wan
ipadd name=HTTP ip=194.217.150.0/24
ipadd name=HTTP ip=194.217.151.0/24
ipadd name=HTTP ip=193.195.224.0/24
ipadd name=HTTP ip=195.173.57.160
ipadd name=HTTP ip=203.101.113.2
ipadd name=HTTP ip=203.78.214.193
ipadd name=HTTP ip=194.159.246.122
ipadd name=HTTP ip=194.217.240.244
ipadd name=HTTP ip=194.159.29.0/24
ipadd name=HTTP ip=192.168.254.0/24
ipadd name=FTP ip=194.217.150.0/24
ipadd name=FTP ip=194.217.151.0/24
ipadd name=FTP ip=193.195.224.0/24
ipadd name=FTP ip=195.173.57.160
ipadd name=FTP ip=203.101.113.2
ipadd name=FTP ip=203.78.214.193
ipadd name=FTP ip=194.159.246.122
ipadd name=FTP ip=194.217.240.244
ipadd name=FTP ip=194.159.29.0/24
ipadd name=FTP ip=192.168.254.0/24
ipadd name=TELNET ip=194.217.150.0/24
ipadd name=TELNET ip=194.217.151.0/24
ipadd name=TELNET ip=193.195.224.0/24
ipadd name=TELNET ip=195.173.57.160
ipadd name=TELNET ip=203.101.113.2
ipadd name=TELNET ip=203.78.214.193
ipadd name=TELNET ip=194.159.246.122
ipadd name=TELNET ip=194.217.240.244
ipadd name=TELNET ip=194.159.29.0/24
ipadd name=TELNET ip=192.168.254.0/24
modify name=PPTP state=enabled
modify name=SNTP state=enabled
modify name=SLA_ICMP_PING state=disabled
modify name=SLA_UDP_PING state=disabled
modify name=HTTP state=enabled
modify name=HTTPs state=enabled
modify name=TFTP-C state=disabled
modify name=FTP state=enabled
modify name=TELNET state=enabled
modify name=RIP state=disabled
modify name=IGMP-Proxy state=disabled
modify name=DNS-S state=enabled
modify name=DNS-C state=enabled
modify name=DHCP-S state=enabled
modify name=SNMP_AGENT state=disabled
modify name=SSDP state=enabled
modify name=MDAP state=enabled
modify name=CWMP-C state=disabled
modify name=CWMP-S state=disabled
modify name=IP_COMMANDS state=disabled
modify name=PING_RESPONDER state=enabled
mapadd name=HTTP port=www-http
mapadd name=HTTPs port=443
mapadd name=HTTPI intf=LocalNetwork port=www-http
mapadd name=HTTPI intf=LocalNetwork port=1080
mapadd name=HTTPI intf=LocalNetwork port=httpproxy
mapadd name=FTP port=ftp
mapadd name=TELNET port=telnet
mapadd name=DNS-S port=dns
mapadd name=SNMP_AGENT port=snmp
mapadd name=SSDP port=1900
mapadd name=MDAP port=3235

[ kta.ini ]

[ kti.ini ]

[ koa.ini ]
a d=”” l=yes

[ koi.ini ]
a d=”” l=yes

[ endofarch ]
{demon-gw}=>

can you please help me.. im stuck at the admin and password thing.. ive done all the passwords and usernames but it wont work.. please help..

What ISP are you with? Where are you trying to login?

my isp is digitel. and im from the philippines.

actually i cant access my router and i even tried all the username

and passwords but still wont work. i really want to configure it so that i would

have wifi again. :( please help me. really not good at this kind of situations. :(

Have you tried resetting your router at all?

yeah i hard reset it. and the SSID becomes ” barQ ”

can you give me possible username and passwords. i hope that i missed

something :(

BTW i tried to hard reset it and tried this combinations.

Username : Administrator

password : Serial no. of my router

but still wont work..

even

Username : Administrator

Password : ” (none) ”

still wont work. please lee help me to reslove this. :(

Ok, have you tried the other combinations listed in here comments too?

I would speak to our ISP though as ultimately its them that sets it.

I assume you tried admin instead of administrator also? And password as the password or even your SSID or Wireless key?

yup. but surprisingly my router worked even if i didn’t configure it yet. :(

weird thing.

Hello Lee, im really impressed to find a blog like this (and glad to find it too).

i´ve got a thomson TG585 v7, and i have all the troubles describes above… so after read at least 40 notes i know that i need that telnet guide u put at this link (Thomson TG576 v7 and TG585 v7 CLI Reference Guide R7.4 PDF (2.2MB)) but unfortunately i cant go into cause it seems to be no longer available…-

so if its possible, could u send me that manual by mail or tell me another link where i can downloaded.

i´ll be more than greatfull for this…

and congrats for your blog again…2 years and still helping people…more that u expected eh?? ;)

cheers…Rafo44

Yes I never expected to still be helping people. I never expected any replies originally.

I did see that issue with the document a while ago, back on August 29th I posted a comment with a new link.

I can’t paste it here as the WordPress app that I’m using doesn’t include copy and paste. Sorry.

got it!!… ty Lee, if i`ve got any other doubt about the use of the commands i´ll ask u…. if thats ok with u….

ty again

Hi, a newbie here! I’ve an O2 (locked) version of this router and I can get in to the web interface using Administrator (and no password) but I cannot access Telnet – I think I need to create a new admin account, but the O2 web interface won’t allow me to do so. Please help! Ultimately, I want to unlock my O2 router and have the latest unlocked firmware on it – is there an easy way to do this? Any help appreciated!

I’ve seen the O2 routers, quite locked down I agree. You might be able to backup the config and modify that using a text editor then restore it.

Or maybe the Urls still work even though there are no buttons for them.

I’ve never unlocked one of these routers so I can’t confirm what will work.

Hi,
I am currently ready to put the thomson TG585 v7 router through the window. Hope you can help!!!

I have two Foscam IP Cameras which when connected through the router 192.168.1.254 assign there own individual IP address. I can access the two cameras through the network at home no problem.
I want to now access these cameras from the internet. I spent two hours or so on phone to Be who configured the router, they say for port forwarding on port 80. This didnt work and over the next 2 hours they had me doing various resets, etc. There last comment was we will send you another box which doesnt reslove the issue I have.
Can you talk me through how to do this in simple to understand terms.
Please please hope you can help.
Thanks

Hi,

Do each of these cameras have their own individual interfaces that you are trying to access or is there a central point, for example a computer running video software that connects to these two cameras?

If its the former, that you want to connect to each camera separately, you will need to assign different port forwards to each one. For example one on port 80 and one on 8080 as a port can only be directed to one device at a time and once it’s in use you would have to assign a new port.

Potentially port 80 is being blocked by your routers access page. Out of interest I would try another port in the “safe” range to see if you can access the cameras at all first. So, for example assign port 8090 to forward to port 80 on one of your cameras IP addresses. Then test it from outside to see if it works.

If it doesn’t, then working at releasing port 80 from the router won’t help at the moment as the problem is elsewhere.

Thanks Lee,
You are right the computer has video software whic connects to the cameras from which you can control them. I have tried allocating port 80 to the IP address of one of the cameras but this appears not to work. I have tested the port with a programme on the net, which shows that it can not access the port 80. Should I try different port, and if so any recommendations. Ps I have also tried 8080.
Thanks

Hi, these cameras, are they on the same network?

Lets say for arguments sake, your router is IP address 192.168.0.1 and Camera1 is 192.168.0.5 and Camera2 is 192.168.0.6 and the computer is 192.168.0.2 then you shouldn’t need to forward any ports through the router unless you wanted to see each camera remotely.

All you should need to do is forward a port through to the computer to manage theses cameras, and the computer will interact with the cameras across the local network.

Ji lee,

Am very impressed with this blog and for how long you have been helping us all with this terrible router.

My issue is strange. After I hope mastering the speed touch I had with BE, I have now moved to Cyprus and was looking forward to receiving a different router with my new ISP. Guess what… It’s the same bloody one!

I begrudgingly set up all my port forwarding for remote desktop, FTP and Sabnzbd, and everything was working fine connecting from the net to these services.

hOWEVER…. It seems to be randomly losing these settings. Not only does it loose the setting the assigns a specific game or application to an ip on my LAN, but it also loses the game and application (which I custom set up) itself.

Do you think it is possible that my ISP is connecting to the router and removing these settings? If so any idea how to stop this?

Alternatively have u any other idea why this happens? Never had the problem in the UK with the same model of router…

Ure help greatly appreciated!

Technically it is possible for them to remotely connect, but its unlikely. I have seen these routers, or at least similar routers lose their settings from time to time. I’m not sure why it does it, possibly faulty router or power spikes.

I would suggest backing up the config unless you have already done so, also check on the updates to see if there are any firmware updates available. If you view the backup file once you’ve downloaded it, it might list what users are currently configured on the router. You can see if one of those is your ISP.

hello,

I need to the manual or script to install thomson 585 v7 as router (adsl) like faweri in algeria

Look in the passed few comments and you’ll find the url.

hello,
i installed the us robotic roter and another driver wcich make local area network.i ahave thomson 585v7 to contect which is secured network.if i give ip and gate way then it show connected but not receive data on states of connection.sililaral if connect to other network which is not secure then it work properly.if i connect my own network then no page will open.plz tell me whay should i do?
and what the role oo bridge connection?