Visitor
•
3 Messages
why no windows app for managing our gateway
I am at work. I can VPN into my home network with my Fortinet Firewall IPSec VPN. My phone can't see my Gateway from XFinity because it is not in the VPN. Whose stupid idea was to tie the Gateway management into the WIFI and not an internal subnet? The app on my phone shows no devices because it isn't at home. WIFI Intelligence isn't very intelligent. WIFI isn't very safe for management of devices. People can hack your Wifi. I would keep it disabled. I want the gateway in IP passthrough mode with all security disabled. The Fortinet handles all security.
My home WIFI is on my Fortinet Wireless Access Points. I treat my AT&T Gateway as a IP Passthrough device so my Fortinet Firewall gets the IPv4 and IPv6 information. Fortinet is the top tier of firewalls and security devices. I can't access http://10.0.0.1. I get a stupid message to use the phone app. I am at work. I can't access the device. I went with your modem for better performance. It is a secondary connection that my children use. My wife uses the AT&T Gigabit Fiber for work. It is full gigabit fiber to the modem. Gig Up/Gig Down 2 ms latency. Any way to change the modem to allow http://10.0.0.1 to work?
XfinityAirelle
Official Employee
•
3.2K Messages
10 hours ago
We definitely understand where you’re coming from, especially with a more advanced network setup like yours using a Fortinet firewall and separate AP infrastructure. You’ve clearly put a lot of thought into segmentation and security, so we can see why the current management limitations would be frustrating.
At this time, the newer Xfinity gateways are heavily integrated with the Xfinity app ecosystem, and many management functions that were previously available directly through the local admin interface at 10.0.0.1 have been moved into the app experience instead. The local admin page still exists for certain functions, but access and available settings can vary depending on the gateway model and firmware version.
With that said, there is not currently a supported way to fully restore the older-style standalone web management experience remotely through 10.0.0.1 in the way you’re describing, especially outside the local network. The app is generally designed around direct gateway communication while connected to the home network, which is why your VPN setup does not present the gateway as locally accessible to the app.
For customers running advanced firewall environments like Fortinet, many choose to place the Xfinity gateway into bridge mode instead of relying on the gateway’s routing/security layer. That disables the gateway’s internal router functionality and allows your Fortinet to handle NAT, firewall policies, wireless infrastructure, and security directly. In that configuration, most advanced management would occur on the Fortinet side rather than through the Xfinity gateway itself.
One important note though: once bridge mode is enabled, access to certain gateway management functions can become even more limited from the Xfinity side, since the gateway is essentially acting as a modem only.
We absolutely understand the preference for local web management and tighter control, especially from an enterprise networking perspective. Your feedback honestly makes sense given your use case.
0
0