Roon ARC not connecting due to networking issues with UPnP and NAT configurations (ref#IYVB5X)

Network Setup

· I use my ISP's router alongside a personal router.

ARC Status

· ARC is *Not Ready*

Roon Error Code

· None of these are listed. It simply says "TIMEDOUT" or similar.

System or third-party *firewalls *or *antivirus software* can sometimes block RoonServer from reaching ARC.

·
Try adding RoonServer and its associated processes to the whitelist of any firewalls or antivirus software you have installed, including the Windows system firewall, if applicable.
[You can learn more about firewall exceptions with Roon here.](https://help.roonlabs.com/portal/en/kb/articles/firewall)

Has the status in Roon -> Settings -> ARC changed after adding exceptions in your firewalls and antivirus software for Roon?
ARC is still *Not Ready*

Don't give up yet.

· I'm stuck. I'd like to create a post to ask Roon Community for help.

Describe the issue

I get this "not Ready" message

{
"ipv4_connectivity": {"status":"NetworkError","status_code":504,"error":"error: Error: ETIMEDOUT, response code: undefined, body: undefined connected? undefined"},
"external_ip": {"actual_external_ip":"104.aaa.bbb.ccc","actual_external_ipv6":"null","router_external_ip":"null"},
"natpmp_autoconfig": {"status":"NotFound"},
"upnp_autoconfig": {"server_ip":"10.0.0.1","found_upnp":true,"error":"s:ClientUPnPError718ConflictInMappingEntry"}
}
Nuclease One
AT&T Fiber
Orbi Mesh Router
AT&T provided gateway/router
Relatively new Mac mini

Thanks much
BTW - ARC works inside my home on WIFI great.

Describe your network setup

Nuclease One
AT&T Fiber
Orbi Mesh Router
AT&T provided gateway/router
Relatively new Mac mini

It looks like your Roon server is trying to use uPnP to set up port forwarding for a port that is already being forwarded to a different ip address.

The easiest way to fix this is simply to change the ARC port number in Roon → Settings → Roon ARC.

The port number can generally be any number between 1024 and 65535. Try setting it to 56000 or even 60000.

Unfortunately,no luck. I tried both. ARC works great using WiFi in the house. Other than connected lights and HomePod speakers our home is very vanilla. I only really use Roon with Qobuz for the sake of fidelity and the great interface. No real complexity with our home tech.

Does your router have a status page showing all of the port forwards (including the uPnP managedones)?

My ASUS router has this page:

image1920×1221 116 KB

Which clearly shows what ports are in use (Port range column).

If so, choose a port number that does not fall within any of the indicated ranges.

Having changed the port, does the ARC connection status diagnostic text in Roon → Settings → Roon ARC still report the same ‘ConflictInMappingEntry’ error or does it report something else?

I’m away for a couple of days. I’ll work on it as soon as I return.

Hi @John_Carl ,

I would second checking the router configuration when you return, it does seem like something else is using the port Roon is trying to use. Let us know when you’ve had a chance to do this.

Thanks much. I’ll do it.

Sounds good, we’ll be here!

Wow, this is complex. I didn’t even know command prompt type things still existed. I’m seriously struggling with that, this and really don’t know anything about “ports.” I managed to open terminal and used a Netstat command but it returned stuff that makes no sense to me.

Are there easy instructions anywhere?

I wonder if I should just wait till ARC is a bit more fully baked.

ARC is fully baked in this respect. Your Roon Server is just that. A Server. In order for any server, Roon, HTTP, FTP, anything, to be accessed from outside of your local network, the Server must open a port (numbered between 0 and 65535) and then your router must forward connections to that port to the server in question itself.

The only way to avoid this is to make both ends of the connection a client to an external service which creates a tunnel. The all Roon Server ↔ Roon ARC traffic and use this tunnel and so all of the data goes via this external service. This is what Tailscale does. Roon, the company, do not offer such a service (it would probably cost too much as the computing and networking infrastructure required to support Roon Users around the world would be much

The problem is that a given port number can only be forwarded to one device - so if you have two servers on your network, both using the same port number, then only one of them can be visible from outside of your network.

In your original post, The ConflictInMappingEntry error suggests that the port number used by Roon (55000 by default) is already configured to forward to an Ip address that is not the ip address of your Roon Server and so it cannot also be configured to forward to your Roon Server and hence the uPnP configuration request fails.

This can actually occur for two reasons:

1. You really do have a device on your network that is using the same port and a port forwarding rule for the port in question has already been setup - either explicitely or by uPnP.
2. Your Roon Server has, for some reason, changed it’s ip address but the rule that it established when it was on the old ip address is still in place in the router and so the port is being forwarded to a (probably non-existant) device on the old ip address.

In the second case, you may be able to fix the issue by rebooting the router - but that will not fix the issue if it is caused by the first reason.

When looking to see what ports you might be able to use, you need to look not at the ports that are open on the various devices around your network - these will be many and most of them will not require forwarding in the router.

Instead you need to look at the configuration of the router itself to determine what ports are already being forwarded. Many routers have a status page in the Web UI (no command line required) to see this. If not, then if your router has a command line interface available, then you may be able to do it with a command like “sudo iptables -t nat -vnL” but I have never done this and I don’t know what the output is.

Whichever way you do it, you need to look at the set of port forwards on your router and determine the set of ports that are already being forwarded. This done, you need to choose a port for ARC that is not in this set of forwarded ports. In the ASUS Port forwarding status page image that I posted above, you can see that I have TCP port forwards for port 55000, 5001 and 59758 (The UDP port forwards don’t matter) and so, I were to setup up another Roon Server I could get ARC port forward working by choosing any port other than these three.

Further, if you look at the ‘Open By’ column, you can see that some of the Port Forwards are ‘opened’ by VSERVER and some are opened by VUPNP. On this ASUS router, the VSERVER forwards are manually configured and the VUPNP forwards are the ones created by application running uPnP and requesting that a port be forwarded.

Hi Wade,

First, thank you for the fast and unbelievably thorough response.

I used to have the server/core. On my Mac , before I moved it to the Nucleus One,

I didn’t remove the old server.

But I was still having the issue one the old one.

I’ll continue to try to figure it out with the info in you reply.

Thanks again.

Eureka!!

Got it Wade.

I went the Tailscale route.

Persistence and a pot of audio gold at the end of the journey, is what it took.

Thanks again for all of the help.

Hi @John_Carl,

@Wade_Oram is highly experienced and has helped hundreds of users here with NAT traversal. We’re glad to hear that you’ve found a solution.

If you have any issues with Tailscale moving forward, please reach out in a new thread and we’ll assist as promptly as possible.