From: DeltaNet Telecom - Jeroen Wunnink (mag@stratics.com)
Date: Wed Feb 28 2001 - 02:26:01 PST
Yes, I had it with Microsoft's Asheron Call..
Just get the ipmasqadm package (from the older kernels).
Open the ports in your setup and forward them to the specified machine,
works great..
Small sample of my setup:
## AC
/usr/sbin/ipmasqadm portfw -a -P tcp -L <your internet IP here> 9009 -R
192.168.1.2 9009
/usr/sbin/ipmasqadm portfw -a -P tcp -L <your internet IP here> 9012 -R
192.168.1.2 9012
/usr/sbin/ipmasqadm portfw -a -P tcp -L <your internet IP here> 9013 -R
192.168.1.2 9013
/usr/sbin/ipmasqadm portfw -a -P udp -L <your internet IP here> 9009 -R
192.168.1.2 9009
/usr/sbin/ipmasqadm portfw -a -P udp -L <your internet IP here> 9012 -R
192.168.1.2 9012
/usr/sbin/ipmasqadm portfw -a -P udp -L <your internet IP here> 9013 -R
192.168.1.2 9013
And for the IPchains ones to open them up:
$IPCHAINS -A input -p udp -s $REMOTENET -d $OUTERNET 9009 -j ACCEPT
$IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 9009 -j ACCEPT
$IPCHAINS -A input -p udp -s $REMOTENET -d $OUTERNET 9012 -j ACCEPT
$IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 9012 -j ACCEPT
$IPCHAINS -A input -p udp -s $REMOTENET -d $OUTERNET 9013 -j ACCEPT
$IPCHAINS -A input -p tcp -s $REMOTENET -d $OUTERNET 9013 -j ACCEPT
At 09:23 28-2-01 +0000, you wrote:
>Hi Joel,
>
>I have a sneaking suspicion that some games, e.g. Microsoft ones, open a
>small TCP server on the client machine. If that happens then ipmasq may be
>needed. Also if the game does not conform to TCP 100% properly you could
>hit problems. I agree many games, GPL, Quake, UT do work fine with a
>default pmfirewall setup but I suspect some don't. Another problem area,
>for the same reasons, are broadband ISP's who use NAT to supply you with
>an ip address because there is no guarantee they have any masquerading
>setup in a form that games need. Again the ones above probably will be
>fine but some are not. And it's these games which I think need ipmasq.
>
>Dom.
>----- Original Message -----
>From: MaD MaN <joelf@ptd.net>
>To: <pmfirewall@pointman.org>
>Sent: 27 February 2001 20:22
>Subject: Re: [pmfirewall] Re: [Pmfirewall] Question on opening ports
>
>
> > If you are just playing the games and ruing a server you do not need to
>use
> > ipmasq at all. I play unreal on a Win machine and all i do is open up
>the
> > proper ports for gamespy and then the proper ports for the servers I
>want to
> > connent to. I open up source ports thats all, not my external
>interface.
> >
>
>
>****************************************************************************
>* To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall"
>* in the message body to majordomo@pointman.org. Please direct other
>* questions, comments, or problems to pmfirewall-owner@pointman.org.
>*
>* Need answers fast? Check the list archive located at:
>* http://www.pointman.org/PMFirewall/list-archive/
>*
Jeroen Wunnink - DeltaNet Telecom
mag@stratics.com
****************************************************************************
* To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall"
* in the message body to majordomo@pointman.org. Please direct other
* questions, comments, or problems to pmfirewall-owner@pointman.org.
*
* Need answers fast? Check the list archive located at:
* http://www.pointman.org/PMFirewall/list-archive/
*
This archive was generated by hypermail 2b29 : Sun Jun 10 2001 - 02:40:17 PDT