ipchains and port masqerading

From: Crosis (crosis.nospam@paradise.net.nz)
Date: 03/24/03

Next message: Alien Brain: "newbie network question"
Previous message: Michel Bardiaux: "Re: Deny local socket/port binding on server."
Next in thread: Brainfried Sysadmin: "Re: ipchains and port masqerading"
Reply: Brainfried Sysadmin: "Re: ipchains and port masqerading"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Crosis <crosis.nospam@paradise.net.nz>
Date: Mon, 24 Mar 2003 19:36:11 +1200

I admit I am still a newbie to linux and I am trying to learn to do
things for myself but I have become stuck so I find my self asking
what might be a stupid question for those in the know.

I want gateway / firewall to allow bidirectional traffic on port 17478
for a game that runs on my windows box. The gateway is using a 2.2.x
kernal with ipchains set up per the document by Gerhard Mourani -
Securing and Optimizing Linux: Red Hat Edition that RedHat had on
their site ( I cant find it now ).

Anyhow I have read several fine texts which lead me to the conclusion
that the following might work

ipchains -A forward -i $EXTER -p udp -s 192.168.0.10 17478 \
-d 0.0.0.0/0 -j MASQ

where $EXTER is the external interface.

this had no success so I added the line

ipchains -A forward -i $LOCAL -p udp -s 0.0.0.0/0 $UNPRIV \
-d 192.168.0.10 -j MASQ

where $LOCAL is the local interface and $UNPRIV is set earlier in the
script as UNPRIV="1024:65535"

Still no success

I used ipchains -L -M to see what was going on what I see is
prot expire source destination ports
UDP 02:38.77 192.168.0.10 65.214.130.33 17478 (62783)->17478

and a few www entries that are for web pages to connect

Any help would be appreciated

Regards
Brent

Next message: Alien Brain: "newbie network question"
Previous message: Michel Bardiaux: "Re: Deny local socket/port binding on server."
Next in thread: Brainfried Sysadmin: "Re: ipchains and port masqerading"
Reply: Brainfried Sysadmin: "Re: ipchains and port masqerading"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: The United States Trying To Get Rid Of UseNet?
... But why is fsck running so often??? ... specs to Linux developers. ... I agree Linux' success was unexpected and mystifying to many ...
(alt.lang.asm)
Re: The alternative Delphi roadmap to success
... "only future for Delphi is native code"? ... another 20, we need equal presence of the product in Linux, .Net Current and ... What DevCo need to decide is where would they be in a few years. ... success of Windows 3.x ...
(borland.public.delphi.non-technical)
Re: Visio alternative
... > Chris Cox wrote: ... > enforce KVivio from the get go, I may have better success. ... If you don't require M$ Office compatibility, ... amount of Linux... ...
(alt.os.linux.suse)
RE: IDS using Taps & network bridging
... I think perhaps you want to sniff the external interface instead? ... I agree with others that Linux isn't necessarily the best platform for doing this sort of thing. ... -started up the bridge ...
(Focus-IDS)
Re: offscreenrendering works on Win but not on Linux
... Win but not on Linux. ... QPixmap ExVs::renderPixmap ... if{return nullPm;} ... bool success = TRUE; ...
(comp.graphics.api.opengl)