Comcast , Cox, Shaw Communications and Xfinity users - your ISP is "protecting" you and blocking incoming connections on your Port Forwards.
https://www.xfinity.com/support/articles/using-xfinity-xfi-advanced-security
You will need to go in and unblock the FG server AND your players every 30days.


Extra info from Niles

So log into xfinity.com/myxfi, NOT the admin page where you port forward. This would be where you can pay your monthly bill. Click on Network, then Advanced Security, then you'll see all the devices connected to your wifi. It will probably show that there were "threats" to your devices. Click on your device that runs Fantasy Grounds. The next page will say "Unauthorized Access Attempt and specify the number of threats to your device. Click on that and the next page will say "threat history". Click on that. Now you can click on "allow" to let FG and anyone else trying to access Port 1802 through. But as damned said, it's only for 30 days. At the end of 30 days, you have to allow it all again. I had a Comcast tech out and he said this extra layer of security can't be bypassed and even the newest of modems will have it.

https://www.fantasygrounds.com/forums/attachment.php?attachmentid=31337

You may be able to disable it permanently (or until they turn it on again).

https://internet.xfinity.com/more/my-services/my-services-disabling

https://www.fantasygrounds.com/forums/attachment.php?attachmentid=31342

I ran into this EXACT issue last week when I started playing again with some friends.

It is just a big PITA because you have to go in, open the port, and then AFTER you try connecting, go back to the site and approve the connection.

And yes, you will have to renew it every 30 days.

Seems this is only people who opt in to some kind of "premium security" feature right?

Definitely has some "how to turn this BS off" options in their FAQ, too. Hopefully it's not really a thing you gotta set a calendar reminder for... ugh.

I'm just going to leave this here:
https://developers.google.com/speed/public-dns/docs/using

I'm just going to leave this here:
https://developers.google.com/speed/public-dns/docs/using

This is the ISP blocking traffic that the customer has allowed by way of Port Forward.
Changing DNS wont bypass this.

Even after opting out of the Advanced Security. The gateway was still blocking traffic on 1802 when properly set up.
Using the "equipment" as a bridge seems to allow things to work on FG as normal. We shall see in the future if this holds true.

Extra info from Niles

So log into xfinity.com/myxfi, NOT the admin page where you port forward. This would be where you can pay your monthly bill. Click on Network, then Advanced Security, then you'll see all the devices connected to your wifi. It will probably show that there were "threats" to your devices. Click on your device that runs Fantasy Grounds. The next page will say "Unauthorized Access Attempt and specify the number of threats to your device. Click on that and the next page will say "threat history". Click on that. Now you can click on "allow" to let FG and anyone else trying to access Port 1802 through. But as damned said, it's only for 30 days. At the end of 30 days, you have to allow it all again. I had a Comcast tech out and he said this extra layer of security can't be bypassed and even the newest of modems will have it.

https://www.fantasygrounds.com/forums/attachment.php?attachmentid=31337

I've stickied this so it doesn't get buried.

It looks like this will disable it permanently (or until they turn it on again).

https://internet.xfinity.com/more/my-services/my-services-disabling
31342

Yup, this worked like a charm. Thank you.

For crying out loud! That is what happened?! Been driving me nuts for the past two weeks. However, I plan to solve this problem permanently tonight... getting my own modem and router. Take that Comcast? Lol.

For crying out loud! That is what happened?! Been driving me nuts for the past two weeks. However, I plan to solve this problem permanently tonight... getting my own modem and router. Take that Comcast? Lol.

Its not being done at the the router level - its happening at the core router - Im not sure changing your router will change anything.
Whitelist every 30 days is probably the best way to go.

This is from their site. "Advanced Security is available to Xfinity Internet subscribers who rent a compatible xFi Gateway." I have Xfinity and my own modem and router and I don't have that problem. Plus you're better off with your own equipment in the long run. You will probably need to call them up and register your modem on their network though.

This is from their site. "Advanced Security is available to Xfinity Internet subscribers who rent a compatible xFi Gateway." I have Xfinity and my own modem and router and I don't have that problem. Plus you're better off with your own equipment in the long run. You will probably need to call them up and register your modem on their network though.

very good - thanks for that extra info dmbrown

very good - thanks for that extra info dmbrown

Yeah. Their Gateways are managed via a cloud based system. This is why.

So incredibly helpful! Thank you so much!


Extra info from Niles

So log into xfinity.com/myxfi, NOT the admin page where you port forward. This would be where you can pay your monthly bill. Click on Network, then Advanced Security, then you'll see all the devices connected to your wifi. It will probably show that there were "threats" to your devices. Click on your device that runs Fantasy Grounds. The next page will say "Unauthorized Access Attempt and specify the number of threats to your device. Click on that and the next page will say "threat history". Click on that. Now you can click on "allow" to let FG and anyone else trying to access Port 1802 through. But as damned said, it's only for 30 days. At the end of 30 days, you have to allow it all again. I had a Comcast tech out and he said this extra layer of security can't be bypassed and even the newest of modems will have it.

https://www.fantasygrounds.com/forums/attachment.php?attachmentid=31337

It looks like this will disable it permanently (or until they turn it on again).

https://internet.xfinity.com/more/my-services/my-services-disabling
31342

This this this! I had tried everything and this is the ticket.

I tried to set up a FG Classic game today for first time ever. Same problem with Comcast / Xfinity. None of these fixes worked for me. This is what I've done today:

1) Port forwarding is set up on Comcast / Xfinity
2) Manually allowed my nephew's attempt to connect. Still didn't work. In fact, it only detected it once.
3) Put in a rule on my ESET firewall to allow TCP traffic on port 1082. Didn't work.
4) Disabled ESET. Didn't work.
5) With ESET disabled, I created a rule to allow TCP on 1082 for Windows Firewall. Didn't work.
6) Disabled Comcast / Xfinity Advanced Security. Waited 30 minutes. Still didn't work.

I am at my wits end. Anybody?
Thanks in advance.

I tried to set up a FG Classic game today for first time ever. Same problem with Comcast / Xfinity. None of these fixes worked for me. This is what I've done today:

1) Port forwarding is set up on Comcast / Xfinity
2) Manually allowed my nephew's attempt to connect. Still didn't work. In fact, it only detected it once.
3) Put in a rule on my ESET firewall to allow TCP traffic on port 1082. Didn't work.
4) Disabled ESET. Didn't work.
5) With ESET disabled, I created a rule to allow TCP on 1082 for Windows Firewall. Didn't work.
6) Disabled Comcast / Xfinity Advanced Security. Waited 30 minutes. Still didn't work.

I am at my wits end. Anybody?
Thanks in advance.

Welcome bking83485

There is athread called Fantasy Grounds Connections Explained.
If you read the first 2 posts and if you are still having issues post answers to ALL 7 Questions - include screenshots too if possible. The more info you supply the better we can assist.

Thank you so much! I have been trying to figure this out for hours!

bking83485 make sure the port is 1802 not 1082.

bking83485 make sure the port is 1802 not 1082.

Yes, thank you. The port forwarding is indeed set to 1802. I just typos in my original post above. It was a long day!

Welcome bking83485

There is athread called Fantasy Grounds Connections Explained.
If you read the first 2 posts and if you are still having issues post answers to ALL 7 Questions - include screenshots too if possible. The more info you supply the better we can assist.

Thanks. I posted my seven answers on the Fantasy Grounds Connections Explained thread. One thing I forgot to mention was that I also disabled the Comcast Xfinity Advanced Security.

32717

It's also a problem for Cox Communications customers. Thanks for the heads up!

32717

It's also a problem for Cox Communications customers. Thanks for the heads up!

Thanks for the update.

I just want to freaking scream. We disabled the Advanced Security but my new PC has not tripped any threats before we did so. Now I can not even get the updater to log me in.

I just want to freaking scream. We disabled the Advanced Security but my new PC has not tripped any threats before we did so. Now I can not even get the updater to log me in.

can you ping patch.fantasygrounds.com?
can you dl "tracert patch.fantasygrounds.com" and post results

can you ping patch.fantasygrounds.com?
can you dl "tracert patch.fantasygrounds.com" and post results

This is what I got

C:\ping patch.fantasygrounds.com

Pinging patch.fantasygrounds.com [70.35.199.236] with 32 bytes of data:
Reply from 10.0.0.1: Destination port unreachable.
Reply from 10.0.0.1: Destination port unreachable.
Reply from 10.0.0.1: Destination port unreachable.
Reply from 10.0.0.1: Destination port unreachable.

Ping statistics for 70.35.199.236:
Packets: Sent = 4, Received = 4, Lost = 0 (0% loss),

C:\tracert patch.fantasygrounds.com

Tracing route to patch.fantasygrounds.com [70.35.199.236]
over a maximum of 30 hops:

1 1 ms 1 ms 1 ms 10.0.0.1
2 10.0.0.1 reports: Destination protocol unreachable.

Trace complete.

Your router or the new software is blocking it....
You might have to enable and then whitelist?

Your router or the new software is blocking it....
You might have to enable and then whitelist?

That has me staring blankly. I am sorry this now has me completely confused.

Login to teh advanced security thingy, enable it.
Then try and whitelist the FG traffic.

I am just giving up. Xfinity and their change is driving me up a wall. I fixed the port forwarding. I disabled and I even enables the advanced security features. I checked my firewall. I checked my virus. I uninstalled and reinstalled. I even went to my old PC and it wont update and has not updated since Xfinity made these asinine changes.

I am not an expert. I am completely turned off by this. I feel like I wasted my money on the kick starter and I am just over with this and I am going to give up on playing online. thanks for trying to help Damned. I just do not have the patience to do this.

If you want me to look at this remotely with you send me your email via PM.

As always, a good VPN can resolve this. Yes, it may be an extra cost. Some may use one already, some may need one just for times like this. But when doing your research, just make sure your VPN service has the ability to do their own port forwarding. A VPN basically 'tunnels' through your providers security and firewalls typically, routing all its traffic through one encrypted connection through a dedicated socket/port. Yeah, I know this isn't a 100% detailed and technically accurate breakdown, but it illustrates the point.

But your VPN only hands off the info to your computer bypassing any snooping or security in the middle, it doesn't ignore your firewalls or blocking. Your local PC still has to have the proper port (1802) open to receive the FG data. And some VPNs block most ports for your protection. So, make sure your VPN also has a port forwarding or opening option. My personal choice of VPN has dedicated servers that are 100% port forwarded, meaning when I connect to that specific server, every single port that is used on the remote side is the exact same port it will use on my side, with no blocking. I only add this because I have seen quite a few people move to a VPN to get around Xfinity issues, only to be disappointed that their new VPN didn't get the job done.

This is why. A VPN that does port forwarding is the key.

The VPN has to Port Forward the specific port being TCP 1802 and in FGU case UDP 1802. So its not just port forwarding. Its forwarding of the specific port unless yo have players append their executable path in the shortcut properties. There is a post called Port Forward Alternatives that includes known to be working solutions.

FYI - You might have to restart your modem after you make any changes. I couldn't log in until I rebooted my modem.

We used a VPN so that I could just log in after disabling the advanced security and even doing the port forwarding for 1802 failed.

Once I could log in and actually update we made an attempt to do a local game and that failed. Even my friend an IT expert was amazed at how backwards this was. We did a cloud game and people could connect.

I will say if this is what new purchasers of Unity will have to go through just to log in and update the game you might get a lot of frustrated new customers who will give up in favor of other methods of playing online.

I am happy this is working now but I was not a very happy camper.

thanks for those who tried to help.

Frank

There was a new networking update released.
Everyone in your group should update to the newest build 2020-04-04
If your FGU doesnt show that after updating you might have to uninstall and reinstall again from a new webinstaller.
So long as you havent pointed your Data and Program files at the same folder manually that should be safe to do.

There may still be some issues causing by the whole Comcast/Cox/Xfinity advanced security that are being investigated.

I am a network engineer by trade. This is the most frustrating thing ever. I would never have imagined that my ISP would block configured services on a device that I paid for. Thanks for posting this. Time to find a new ISP!

I am a network engineer by trade. This is the most frustrating thing ever. I would never have imagined that my ISP would block configured services on a device that I paid for. Thanks for posting this. Time to find a new ISP!

Its a bit of both - they are trying to protect users too as most have no idea how bad the internet is - but yes very painful when it blocks you from doing things you should be able to do.
Did you try unblocking through the web interface?

My suggestion to anyone that has Comcast is when they’re able to purchase their own modem and router to do so. I have my own modem and router and have not had any problems with hosting games in FG classic or Unity.

This is a new thing for most of the major players in the USA, Cox, Comcast, Charter, Time Warner, AT&T, Spectrum, Xfinity, etc.

This ISP thing is happening to everyone, Unity or not. Also, remember this is still Beta, the full release has not been set. I do understand your frustration, going through it too.

It would probably help SmiteWorks getting some traction with Comcast and Co if everyone contact Comcast and told them that their automated security prevents them installing/updating/playing the game.

This fixed my issue as well. Rather annoying, you'd think they'd allow you to poke specific holes into the security, rather than be faced with simply disabling the whole service.

What we need to do is get some of the Comcast IT dept using FG for their games and let them fix the issues for their own convenience. :)

For those who are having trouble with Comcast / Xfinity or one of the other big ISPs, I strongly recommend trying ZeroTier VPN. it was the only way I could get up and running.

https://www.fantasygrounds.com/forums/showthread.php?43570-Using-ZeroTier-to-Host-a-Fantasy-Grounds-Game

I went through this whole thing and I don't see a fix for Comcast. I am doing my first FGU game playing Pathfinder 2. Any help would be appreciate. My friend was able to get it working if he used his phones internet.

Again any fix for Comcast internet providers would be great.

This does not affect just everyone, but the URL to disable is; https://internet.xfinity.com/more/my-services/my-services-disabling. If you have your own router or modem, this may not be the issue. Xfinity Xfi seems to be the culprit, depending on your service and equipment. The brands/models are potentially a part of this advanced security thing.

From Comcast;
XFI ADVANCED SECURITY
What is xFi Advanced Security?
xFi Advanced Security gives added peace of mind for your home network by preventing you from inadvertently visiting malicious sites or downloading dangerous files, as well as blocking remote access to smart devices from unknown or dangerous sources. Advanced Security monitors devices real-time and will alert you when devices are behaving in unusual ways that could indicate a network threat. It will also adapt to your home network and get smarter over time to keep up with new threats.

How do I access Advanced Security features in xFi?
Advanced Security is available to Xfinity Internet subscribers who rent one of the following compatible xFi Gateways:
Arris 1682G, Cisco 3941T, Arris 3482G, Technicolor CGM4140COM, Technicolor CGM4331COM or Arris X5001. To learn more, please visit Getting Started with xFi Advanced Security for additional details.

You will need to provide more info Manchine

You will need to provide more info Manchine

He tries to connect and it just sits there and it doesn't connect. So I don't know what more you need. He was able to connect once he used his phone instead of Comcast.

He tries to connect and it just sits there and it doesn't connect. So I don't know what more you need. He was able to connect once he used his phone instead of Comcast.
Did he go through and change his Advanced Security settings per the first posts in this thread?

Did he go through and change his Advanced Security settings per the first posts in this thread?

The 1802 or something close to that. Saying it without relooking at it. Yep

Does anyone have any solutions for Cox Communications? I don't have the XFinity connection.

Does anyone have any solutions for Cox Communications? I don't have the XFinity connection.
Welcome!

If you have Cox's Panoramic Wifi with Advanced Security enabled, then you need to either disable it or allow the individual connections every 30 days like detailed above. If you don't, then Cox isn't your issue and you should check out the "Connections Explained" sticky.

(Note, I use Cox with no issues)

Nope. I'm running an old-school Apple Airport Extreme fully opened up with Wifi, a Netgear modem from Cox (basic basic, but handles the speeds I need). I had no issues at first, but the latest update seems to have stalled it from loading games, creating them. I haven't tried joining any games yet as I'm new to the platform and still playing around in it.

Can you ping

patch.fantasygrounds.com
update.fantasygrounds.com

This news brings me sadness. but thank you for mentioning it. I am sure I will have to get it to stepping.

So I just had my 'Advanced Security' turned on for me. It was off (and FG was working for me less than 48 hours ago). Now I'm getting blocks.

My ISP is Cox. The Steps to disable are;
Go to https://wifi.cox.com/more/my-services/my-services-disabling

is Spectrum doing this?
cause I'm having the same issues but no idea how to deal with it.

is Spectrum doing this?
cause I'm having the same issues but no idea how to deal with it.
Don't know. But more and more are adding this 'capability'.

Check your account with them and see if they offer "Advanced Security" or some other type of web-based security portal for your account. If they have a portal for controlling your security settings on their website and not directly on your modem/router/gateway, then they probably do.

Hi Miko_Chan

Its possibel something else is going on. Can you look at the Fantasy Grounds Connections Explained and work thru post #1. It might highlight where else the problem could be.

I'd like to note that this just happened to me when I tried to start up as a GM and purchased some sourcebooks. As a player this never bothered me. We have children so "Advanced Security" needs to stay on.

Also, I had tremendous trouble navigating the Xfinity web page in Chrome. I had to download the Xfi app on my Android to be able to click into the Device and reset the 30 day clock.

Happily, this worked and now my downloads are being added.

Good Day and Welcome JK47 :)
Thanks for adding this, hopefully it will help others who are in a similar situation. :)

Despite the two years ive been coming to this site and using fg quite regularly...I've never paid attention to this sticky but now that i see it.

This cant be customer wide for xfinity users. Ive had their service , in fact its the only isp ive had since moving into my current residence in 2001....ive never had to whitelist any of my players....ever.

Edit...its because i use my own router and my comcast config is pass thru..meaning the modem just provides the connection instead of routing functions.

This is only for customers of these ISPs who use a modem/router/gateway provided by the ISP and have their 'Advanced Security' feature enabled.

I've tried multiple times to get Comcast to whitelist or provide information about how to avoid getting caught in this. After multiple negative responses by their web site support over a period of two months, I set this aside to come back to. The Comcast representatives answer is that there is no way to get whitelisted or avoid; and I even asked them to escalate to their engineers with the same answer resturned.

Regards,
JPG

I've tried multiple times to get Comcast to whitelist or provide information about how to avoid getting caught in this. After multiple negative responses by their web site support over a period of two months, I set this aside to come back to. The Comcast representatives answer is that there is no way to get whitelisted or avoid; and I even asked them to escalate to their engineers with the same answer resturned.

Regards,
JPG
Total speculation, but I think they are purchasing this 'Advanced Security' solution from a vendor, and don't have control over it themselves.

In my case, Cox buys their modems they sell/lease to customers from Arris. I imagine for Cox that 'Advanced Security' is a product bundled with the 'Panaramic Wifi' gateways they they get from Arris. (Of note, you have to have the Panaromic Wifi gateway in order to be able to have/use Advanced Security, the older/other modems don't support it.)

A little bit of research on Arris seems to support this to as Arris has some security products that may simple be renamed by ISPs for the consumer market, i.e. "ARRIS Secure Internet app", "MultiTrust Advanced Rights Management" etc

Arris Customer Support (https://arris.secure.force.com/consumers/) might be able to help, but in the past they have always directed me back to my ISP (on other topics my ISP was ignorant of). But perhaps with the right words and phrases you might get routed to what might be the right group to discuss.

ok, didn't let this go. When you get back to it Moon, some more info for you;

Comscope purchased Arris in 2019, Their page here (https://www.commscope.com/solutions/in-home-service-delivery/whole-home-managed-wi-fi/)is for ISPs and the talking points for their "Home Assure" are almost identical to what Cox and xFinity use in their 'Panaromic Wifi' and 'xFi' product descriptions. There is a contact number for Home Assure sales and support at the bottom of this PDF; https://www.commscope.com/globalassets/digizuite/61939-homeassure-for-cable-operators.pdf

Here's the last feedback I got from their support team:
https://forums.xfinity.com/t5/Xfinity-xFi/Advanced-Security-whitelist/td-p/3324899

JPG

Per a suggestion from damned after he read that thread, I made another post on their site to clarify.
https://forums.xfinity.com/t5/Your-Home-Network/Advanced-Security-Issues/td-p/3359078

Regards,
JPG

Good catch and followup :) I was going to suggest the same thing :) Hopefully it will help.

I've submitted a similar ticket with Cox customer support as a customer and will let you know if they say anything useful.

Does anyone know how to make it show up? Some of the port 1802 on the Advanced stuff never came in.

Does anyone know how to make it show up? Some of the port 1802 on the Advanced stuff never came in.
Going to need more details than this. No idea what "it" you are referring to. Perhaps screen shots? Just black out your username and any PII if there is any.

I use comcast business and I don't see such problems.

I'm having some problems. I upgraded my Modem to a Arris SurfBoard: SBG7600AC2
It has an integrated router and so I went to set up port forwarding and created the port forward with the 1802 port, etc.
Got a Failure when I tried to connect.

I'm a Xfinity buyer. When I set up my modem it forced me to log in and register that with Comcast. I've looked ALL over the app to try to figure out how to white list this port forward and I can't find it.

SO, I went back to my old modem and router to run the game tonight, and it STILL didn't work.

I know I am doing everything right, Port Forward is set up correct, when I went back to the old system the Internal number changed (as it should)

I'm hitting my forehead against the wall to try to fix this.

Put your new router back on and try the links earlier in this thread - see if you can access the web control panel and disable advanced security - or whitelist the FG (and players) IP addresses.

There should also be a way in the xfinity router config to set to bridge mode so you can used your new router.

Just a note to Shaw Communications users; you can have the Shaw Internet service team configure your Internet router-modem for bridged mode. When it's in that mode it will function more like a standard cable modem with minimal routing features and won't tamper with you port configurations. That's what I did and I've never had any issues with hosting players with FGC Ultimate.
That said, you don't want to do that unless you have a 2nd router connected to your Shaw router-modem; too risky for security otherwise. As well, that also means for FGC you have to config your Shaw modem-router to redirect port 1802 to your internal router's IP address, which in turn needs to redirect it to the IP address of your PC running FGC.

Personally, I like having 2 layers of security like that and are now running FGU in LAN mode with the same configuration.

Thanks for the reply Nylanfs and damned

I went back to just the Arris router/modem combo and attempted to find a way to get to whatever mysterious thing Xfininity has out there (my Arris board I bought myself) and I can't find anywhere about whitelisting, etc. I tried the links damned has posted and it all just drives me to download the xfinity app and I can't find anything about that.

I'm reaching out to xfininity customer support to get some help, hopefully we can solve this. I would have for all this to junk FG and FGU (I have them both)

Another way to avoid this (and to give an excuse to buy something) is to buy a router. Your ISP is able to manage your internet because of the modem/router they install on location. When your editing your settings, your editing the settings for the actual router/modem that they installed. In addition, this "security feature" only happens on certain xfinity models of routers/modems. So to avoid this, either permanently set your router settings as pointed out by @Nylanfs earlier in this thread (quote shown below).


It looks like this will disable it permanently (or until they turn it on again).

https://internet.xfinity.com/more/my-services/my-services-disabling
Xfi_advanced.png

Or buy a new router or wifi router (if your wireless) and set your modem that was given to you to bridge mode. I will warn users, doing this requires some technical knowledge to do this. Meaning that you will need to do some research on this as well as what type of modem/router your ISP gave you, what router you are connecting to it, as well as how to do bridge mode. Not only that, but while doing the switcheroo you will have no internet. So make sure you have cell service so that way you can call your ISP for help in setting this up or google your issue. The reason you need to set your modem/router to bridge mode is to have an unmanaged connection to the Internet. The whole reason as to why this problem is appearing for players is because your ISP is managing your internet connections for you in order to protect their users. However, in some cases with Xfinity, this can turn into excessive hand holding and blocking known safe connections.

*BONUS*An added plus to buying a new router and using that instead of what your ISP gave you will be (in most cases) better internet speed, bandwidth, and connectivity. So, as long as your willing to put in the work, this can be hugely beneficial for people that like to game or stream wirelessly.

I have had several players on Xfinity who could not connect because of this issue, and have tirelessly spent time trying to fix it. This knowledge comes from my research on the internet (where else would I get it), my time working in IT, talking to other Comcast IT specialists I know of, and talking to comcast (they are a pain in the ***). However, I will assert that I may be wrong and I am open to any criticism. So feel free to reply back to correct me on anything I said that could be wrong.

Comcast , Cox, Shaw Communications and Xfinity users - your ISP is "protecting" you and blocking incoming connections on your Port Forwards.
https://www.xfinity.com/support/articles/using-xfinity-xfi-advanced-security
You will need to go in and unblock the FG server AND your players every 30days.


Extra info from Niles

So log into xfinity.com/myxfi, NOT the admin page where you port forward. This would be where you can pay your monthly bill. Click on Network, then Advanced Security, then you'll see all the devices connected to your wifi. It will probably show that there were "threats" to your devices. Click on your device that runs Fantasy Grounds. The next page will say "Unauthorized Access Attempt and specify the number of threats to your device. Click on that and the next page will say "threat history". Click on that. Now you can click on "allow" to let FG and anyone else trying to access Port 1802 through. But as damned said, it's only for 30 days. At the end of 30 days, you have to allow it all again. I had a Comcast (help: comcast customer service number (https://comcast.pissedconsumer.com/customer-service.html)) tech out and he said this extra layer of security can't be bypassed and even the newest of modems will have it.

https://www.fantasygrounds.com/forums/attachment.php?attachmentid=31337

You may be able to disable it permanently (or until they turn it on again).

https://internet.xfinity.com/more/my-services/my-services-disabling

https://www.fantasygrounds.com/forums/attachment.php?attachmentid=31342

Thank you for this. Really helped.