A link to "Comcast Business IP Gateway overview" will be sent via email.
We hate spam. The information you've entered will not be shared or sold.
Comcast's IP Gateway (Comcast's firewall, switch and static IP-capable modem) is all you need to take advantage of a static IP and built-in firewall features. Find out what you can do with a static IP, along with the additional features available on the IP Gateway device.
A static IP address is one that will not change unless there is a network need for it to do so. A static IP will allow you to run an email, web or VPN server, from a device behind the modem (Gateway), with a static (public, routable) address.
A dynamic IP address has the potential to change at any given interval. Normally a lease time is assigned to the IP address and, once it has expired, there is a chance a different IP address will be assigned to you.
Static IPs can be ordered in blocks of 1, 5 and (in select areas) 13 for an additional monthly charge. Once ordered, a custom configuration containing the static IP range is remotely configured in the Comcast IP Gateway with no additional hardware required for you to connect it to your equipment (server, firewall, etc.).
Your server or firewall (behind the modem) should be configured with the following settings:
IP address: This will be given to you once it is built.
A CIDR /30 (or 1 routable static IP) - 255.255.255.252
A /29 (or 5 routable static IPs) - 255.255.255.248
A /28 (or 13 static IPs) - 255.255.255.240
Gateway IP: This is the last IP in the range loaded on the Comcast Gateway.
Primary DNS: 220.127.116.11
Secondary DNS: 18.104.22.168
If your specific needs do not require a static IP you may have the option to provide your own standalone cable modem. However, by utilizing the Comcast-provided Gateway you have the option to attach a separate router or hardware firewall, or utilize the built-in firewall functionality provided by the Comcast IP Gateway.
The Comcast IP Gateway's firewall offers:
Stateful packet inspection (SPI)
Port forwarding (up to 35 forwards)
Port triggering (up to 50)
Keyword blocking (up to 50)
The Comcast firewall will not provide DQOS control or bandwidth usage data. For those functions we recommend that you add your own router with firewall capabilities.
Comcast can configure the Gateway according to customer specifications. However, we will only disable a customer's firewall and DHCP service on the Gateway upon request.
Port forwarding rules can be set up that will allow you to run servers from your private LAN IP subnet. An IP address is assigned to the Comcast IP Gateway, and the static IP address you purchase is available for your use (whether it's for a server, firewall or other device).
Note: The static IP cannot be port-forwarded unless it is configured for 1-to-1 NAT (forwards every port).
If the Comcast IP Gateway is used as a firewall, you'll be able to port forward traffic from the IP Gateway and use your static IP address however you like. These configurations actually allow you to use two static IP addresses while only purchasing one. The same is true if you purchase five static IP addresses. You'll have six static IP addresses available to use.
You can attach your computers to the IP Gateway using it as your DHCP server. It has 4 available ports and can support up to 256 (by default, this is set to 189) networked devices, however bandwidth needs may necessitate limiting the number of simultaneous connections.
Customers who are onsite can make changes by following the instructions in the Comcast IP Gateway User's Guide. (See the "Ports blocked by Comcast Business Internet" article for additional information.)
Comcast does not provide remote access to the Gateway. Customers who are offsite will need to call Comcast Business Customer Support at 1-800-391-3000 to make changes for them.
If your equipment is out of date, upgrade now.
Battery backup for your Comcast Business Voice service helps you maintain service during a power outage.
A quick glance at the service health toolbar keeps up to date with your service status.
Symantec, the Symantec Logo, the Checkmark Logo, and Norton, Norton 360 and Norton by Symantec are registered trademarks of Symantec Corporation ©2014 Symantec Corporation. All rights reserved. Microsoft product names and logos are trademarks or registered trademarks of Microsoft Corporation. All other trademarks are the property of their respective owners.