And look at this now and then, I also get alerts any new IPs that actual login to my plex. I monitor this traffic, via firewall logging. I do limit who can talk to my server (only US and status checking IPs). And should put in as many restrictions and monitoring as possible to make sure only the people you want talking to your service are talking to it. To do that you do need to fully understand how it works, what your doing by forwarding a port. You should take the appropriate steps to keep this as secure as possible. That could be anyone on the internet - many of who are out to do bad things. You are allowing the internet to talk to something on your network, unsolicited. Providing services to the public internet is a serious business - it should not be taking lightly. And know for a fact when its available or not available. I personally have had no issues with plex reporting its status. And they never provide details of what they are actually doing (like blocking some IPs) or quite often if they are using UPnP to get forward and what port on the remote side to use could change. Users not understanding how stuff like this works, and then breaking it or not setting it up correctly. While users do report that remote status is buggy - I have never had any issues with it. Or if plex thinks its down - possible it doesn't send its public IP - that maybe changed? etc. You can even post announcements there - maybe your going to be down for a bit doing maint or something.īut yeah if your blocking where plex checks if your plex is up, its possible plex telling the users client is down, even though its not. There are multiple sites you can use to monitor, uptime robot, statuscake - they even allow you to create public status pages your users can check )įor example here is snip of my status page that my users can access Here is alias I created - this allows those remote plex IPs (that change) and also status cake - which is free service I use to validate my plex is available remote, and alerts me if its not. Quick look at the firewall log shows them checking. You should prob allow those IPs to talk to your plex - I have the list updated every 6 hours via pfblocker. Notice those are not US IPs - when plex itself thinks its not available remote you can have issues. Why blocking everywhere but the US causes problems with Plex remote access Blow the uPNP config away and create a port said in Plex remote access setup on pfsense: Quite honestly though, if you consider the time it took you create this thread and upload screen shot, it probably would've taken you a 1/3rd of the time to create the port forward and you would've been done. Is this the main issue? We don't know, but I doubt it's helping. What you currently have is allowing all IP's from 192.168.1.1 to 192.168.1.254 access to map that port. The devs should really update that section of the format line in the next release. Unfortunately, the way it's currently documented leaves room for interpretation which can cause confusion. The part of the format signifies a single IP address or a range in CIDR notation. If you look at the format and the example on the config page: You will need to make the following change to your ACL: If you insist on using uPNP with an ACL, it appears the syntax for the IP address in your ACL was formatted incorrectly. I agree with dturbes, instead of enabling uPNP and then trying to control the access with ACL's, why not just setup the port forward? Simple test to validate its open is just go to vs their green or red icon ) And port forward way better than UPnP. There could be many more - could be different for you depending what part of the world your in, etc. Here are some of the networks I have seen them do the test from Are you using pfblocker or something - or have limits of what source networks can hit the port forward? They test from a bunch of different networks /12 and /15 from amazon. I have it showing green since I added some of the netblocks they access from. There testing with the green little checkmark could just be flawed. Just go to and test the 32400 port to validate if open or not. I have some plex networks that are used for testing allowed, etc. So they can get direct access from their home networks. I have it locked down to my son's IP and friend IP. I access plex all the time remotely via vpn from my phone, etc.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |