gnutella firewalled on 6346
I have SuSEfirewall2 configured with port 6346 open but gtk-gnutella tells me that I'm firewalled and no one can connect to me nor can I connect to anyone else. Can someone help? Thanks. SuSe 8.2. Here is my firewall: grep -v '#' /etc/sysconfig/SuSEfirewall2 FW_QUICKMODE="no" FW_DEV_EXT="eth0" FW_DEV_INT="" FW_DEV_DMZ="" FW_ROUTE="yes" FW_MASQUERADE="" FW_MASQ_DEV="$FW_DEV_EXT" FW_MASQ_NETS="" FW_PROTECT_FROM_INTERNAL="no" FW_AUTOPROTECT_SERVICES="no" FW_SERVICES_EXT_TCP="6346 9192 http https ssh" FW_SERVICES_EXT_UDP="" FW_SERVICES_EXT_IP="" FW_SERVICES_DMZ_TCP="" FW_SERVICES_DMZ_UDP="" FW_SERVICES_DMZ_IP="" FW_SERVICES_INT_TCP="" FW_SERVICES_INT_UDP="" FW_SERVICES_INT_IP="" FW_SERVICES_QUICK_TCP="" FW_SERVICES_QUICK_UDP="" FW_SERVICES_QUICK_IP="" FW_TRUSTED_NETS="192.168.1.0/24" FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS" FW_SERVICE_AUTODETECT="yes" FW_SERVICE_DNS="no" FW_SERVICE_DHCLIENT="no" FW_SERVICE_DHCPD="no" FW_SERVICE_SQUID="yes" FW_SERVICE_SAMBA="no" FW_FORWARD="" FW_FORWARD_MASQ="" FW_REDIRECT="192.168.1/24,0/0,tcp,80,3128" FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no" FW_LOG="--log-level warning --log-tcp-options --log-ip-option --log-prefix SuSE-FW" FW_KERNEL_SECURITY="yes" FW_STOP_KEEP_ROUTING_STATE="no" FW_ALLOW_PING_FW="yes" FW_ALLOW_PING_DMZ="no" FW_ALLOW_PING_EXT="no" FW_ALLOW_FW_TRACEROUTE="yes" FW_ALLOW_FW_SOURCEQUENCH="yes" FW_ALLOW_FW_BROADCAST="no" FW_IGNORE_FW_BROADCAST="yes" FW_ALLOW_CLASS_ROUTING="no" FW_CUSTOMRULES="" FW_REJECT="no" FW_HTB_TUNE_DEV=""
The 03.10.13 at 10:52, fsanta wrote:
I have SuSEfirewall2 configured with port 6346 open but gtk-gnutella tells me that I'm firewalled and no one can connect to me nor can I connect to anyone else. Can someone help? Thanks. SuSe 8.2. Here is my firewall:
On /var/log/warn you should see which packets is the firewall rejecting. -- Cheers, Carlos Robinson
On Monday 13 October 2003 12:08, Carlos E. R. wrote:
The 03.10.13 at 10:52, fsanta wrote:
I have SuSEfirewall2 configured with port 6346 open but gtk-gnutella tells me that I'm firewalled and no one can connect to me nor can I connect to anyone else. Can someone help? Thanks. SuSe 8.2. Here is my firewall:
On /var/log/warn you should see which packets is the firewall rejecting.
Hi. There is nothing rejected on port 6346
FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no"
On /var/log/warn you should see which packets is the firewall rejecting.
Hi. There is nothing rejected on port 6346
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
Set FW_LOG_DROP_ALL to yes as well? Also how do you know what port fw is dropping? I can never figure out. I am tring to figure out why my microphone doesn't work through messenger. Where is the port? Oct 13 09:38:13 main kernel: SuSE-FW-DROP-DEFAULTIN=eth0 OUT= MAC=00:50:da:c4:1a:35:00:02:3b:01:16:46:08:00 SRC=66.93.119.161 DST=66.93.216.238 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=40453 DF PROTO=TCP SPT=4009 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402) -------------------------------------------------------------------- This message was sent using Yu Creation Webmail powered by Horde IMP
Thanks. Here are two references to 6346. Are there any clues here? Oct 13 16:51:26 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=24.159.129.226 DST=192.168.1.2 LEN=64 TOS=0x00 PREC=0x00 TTL=108 ID=57394 DF PROTO=TCP SPT=6346 DPT=1445 WINDOW=16968 RES=0x00 ACK SYN URGP=0 OPT (020405B4010303000101080A000000000000000001010402) Oct 13 16:51:27 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=24.159.129.226 DST=192.168.1.2 LEN=52 TOS=0x00 PREC=0x00 TTL=108 ID=57458 DF PROTO=TCP SPT=6346 DPT=1445 WINDOW=16701 RES=0x00 ACK URGP=0 OPT (0101080A004A59670009C904) On Monday 13 October 2003 16:41, Henry Tang wrote:
FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no"
On /var/log/warn you should see which packets is the firewall rejecting.
Hi. There is nothing rejected on port 6346
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
Set FW_LOG_DROP_ALL to yes as well? Also how do you know what port fw is dropping? I can never figure out. I am tring to figure out why my microphone doesn't work through messenger.
Where is the port?
Oct 13 09:38:13 main kernel: SuSE-FW-DROP-DEFAULTIN=eth0 OUT= MAC=00:50:da:c4:1a:35:00:02:3b:01:16:46:08:00 SRC=66.93.119.161 DST=66.93.216.238 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=40453 DF PROTO=TCP SPT=4009 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
--------------------------------------------------------- ----------- This message was sent using Yu Creation Webmail powered by Horde IMP
Ah i see the port now. By looking at the ip i guess you are trying to run gnutella on a secondary computer. Maybe you shoudl try putting this in. FW_SERVICES_EXT_UDP="6112" FW_FORWARD_MASQ="0/0,192.168.1.10,udp,6112" The above was used to get my starcraft to work on a secondary computer. It allows information to go inand out of my 192.168.1.10 computer via port 6112 which is used for starcraft. If i remembered correctly, my sc was transferring information out but it couldn't receive information (information got lost, i think). This is for udp though I am going to try installing gnutella on my server compueter tonight when i get home. I didn't know this existed for linux. Sweet, thanks! Quoting fsanta <fsanta@arrakis.es>:
Thanks. Here are two references to 6346. Are there any clues here? Oct 13 16:51:26 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=24.159.129.226 DST=192.168.1.2 LEN=64 TOS=0x00 PREC=0x00 TTL=108 ID=57394 DF PROTO=TCP SPT=6346 DPT=1445 WINDOW=16968 RES=0x00 ACK SYN URGP=0 OPT (020405B4010303000101080A000000000000000001010402)
Oct 13 16:51:27 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=24.159.129.226 DST=192.168.1.2 LEN=52 TOS=0x00 PREC=0x00 TTL=108 ID=57458 DF PROTO=TCP SPT=6346 DPT=1445 WINDOW=16701 RES=0x00 ACK URGP=0 OPT (0101080A004A59670009C904)
On Monday 13 October 2003 16:41, Henry Tang wrote:
FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no"
On /var/log/warn you should see which packets is the firewall rejecting.
Hi. There is nothing rejected on port 6346
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
Set FW_LOG_DROP_ALL to yes as well? Also how do you know what port fw is dropping? I can never figure out. I am tring to figure out why my microphone doesn't work through messenger.
Where is the port?
Oct 13 09:38:13 main kernel: SuSE-FW-DROP-DEFAULTIN=eth0 OUT= MAC=00:50:da:c4:1a:35:00:02:3b:01:16:46:08:00 SRC=66.93.119.161 DST=66.93.216.238 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=40453 DF PROTO=TCP SPT=4009 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
--------------------------------------------------------- ----------- This message was sent using Yu Creation Webmail powered by Horde IMP
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
-------------------------------------------------------------------- This message was sent using Yu Creation Webmail powered by Horde IMP
The 03.10.13 at 09:41, Henry Tang wrote:
Set FW_LOG_DROP_ALL to yes as well?
Right.
Also how do you know what port fw is dropping? I can never figure out. I am tring to figure out why my microphone doesn't work through messenger.
Where is the port?
Oct 13 09:38:13 main kernel: SuSE-FW-DROP-DEFAULTIN=eth0 OUT= MAC=00:50:da:c4:1a:35:00:02:3b:01:16:46:08:00 SRC=66.93.119.161 DST=66.93.216.238 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=40453 DF PROTO=TCP SPT=4009 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
SPT and DPT: Source port, Destination port. But the above is not your microphone, I think. It could be that windows worm out there that it's trying port 135 all the time. You can use ethereal to track you connection, and see what packets go out when you speak at the microphone: they are a lot. -- Cheers, Carlos Robinson
Where is the port?
Oct 13 09:38:13 main kernel: SuSE-FW-DROP-DEFAULTIN=eth0 OUT= MAC=00:50:da:c4:1a:35:00:02:3b:01:16:46:08:00 SRC=66.93.119.161 DST=66.93.216.238 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=40453 DF PROTO=TCP SPT=4009 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
SPT and DPT: Source port, Destination port. But the above is not your microphone, I think. It could be that windows worm out there that it's trying port 135 all the time.
Yea that is not the drop message for my microphone, it was an example for the other guy who initiated this message. But now i know what spt and dpt is all about.
You can use ethereal to track you connection, and see what packets go out when you speak at the microphone: they are a lot.
any more info on this? henry -------------------------------------------------------------------- This message was sent using Yu Creation Webmail powered by Horde IMP
The 03.10.13 at 14:38, Henry Tang wrote:
You can use ethereal to track you connection, and see what packets go out when you speak at the microphone: they are a lot.
any more info on this?
Not much, really... is investigation. Ethereal can show every packet you send or receive -- even any that touches your ethernet, in promiscuous mode -- so there are two cases. You are on an intranet at home, so there is very litle traffic or youcan control it: it is easy to see each packet and identify their types. Or there is a lot of traffic: in this case you need to know the other side IP, so that you can set a filter for every packet whose destination or origin is that IP; for example: "rafa" ip.addr == 213.xx.xx.xx When that is set, try to initiate the connection, and see what passes - or doesn't. I was able to make gnome-meeting work that way. Another helpfull program is iptraf. -- Cheers, Carlos Robinson
Hi everyone. Still not solved. I cannot get anyone to connect to me on port 6346 nor can I connect to anyone else. I have an adsl router with ports 21 and 80 NAT'ed to my box for my ftp and apache servers. Maybe I need to do something similar with 6346? I'm using gtk-gnutella. Please help. Thanks, Steve. Here is my firewall again: FW_QUICKMODE="no" FW_DEV_EXT="eth0" FW_DEV_INT="" FW_DEV_DMZ="" FW_ROUTE="yes" FW_MASQUERADE="yes" FW_MASQ_DEV="$FW_DEV_EXT" FW_MASQ_NETS="0/0" FW_PROTECT_FROM_INTERNAL="no" FW_AUTOPROTECT_SERVICES="no" FW_SERVICES_EXT_TCP="6346 9192 http https ssh" FW_SERVICES_EXT_UDP="" FW_SERVICES_EXT_IP="" FW_SERVICES_DMZ_TCP="" FW_SERVICES_DMZ_UDP="" FW_SERVICES_DMZ_IP="" FW_SERVICES_INT_TCP="" FW_SERVICES_INT_UDP="" FW_SERVICES_INT_IP="" FW_SERVICES_QUICK_TCP="" FW_SERVICES_QUICK_UDP="" FW_SERVICES_QUICK_IP="" FW_TRUSTED_NETS="" FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" FW_ALLOW_INCOMING_HIGHPORTS_UDP="DNS" FW_SERVICE_AUTODETECT="yes" FW_SERVICE_DNS="no" FW_SERVICE_DHCLIENT="no" FW_SERVICE_DHCPD="no" FW_SERVICE_SQUID="yes" FW_SERVICE_SAMBA="no" FW_FORWARD="" FW_FORWARD_MASQ="" FW_REDIRECT="192.168.1/24,0/0,tcp,80,3128" FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no" FW_LOG="--log-level warning --log-tcp-options --log-ip-option --log-prefix SuSE-FW" FW_KERNEL_SECURITY="yes" FW_STOP_KEEP_ROUTING_STATE="no" FW_ALLOW_PING_FW="yes" FW_ALLOW_PING_DMZ="no" FW_ALLOW_PING_EXT="no" FW_ALLOW_FW_TRACEROUTE="yes" FW_ALLOW_FW_SOURCEQUENCH="yes" FW_ALLOW_FW_BROADCAST="no" FW_IGNORE_FW_BROADCAST="yes" FW_ALLOW_CLASS_ROUTING="no" FW_CUSTOMRULES="" FW_REJECT="no" FW_HTB_TUNE_DEV=""
The 03.10.19 at 11:37, fsanta wrote:
Still not solved. I cannot get anyone to connect to me on port 6346 nor can I connect to anyone else. I have an adsl router with ports 21 and 80 NAT'ed to my box for my ftp and apache servers. Maybe I need to do something similar with 6346? I'm using gtk-gnutella. Please help. Thanks, Steve.
I'm sorry, but I don't use gnutella myself, so I'm not familiar with it. There could be issues with the router, analogous to netmeeting/gnomemeeting, perhaps... There may be a FAQ on that program. Try their web page. Did you try ethereal, to see what packets were reaching you? Or iptraf? I would try between two computer sitting side by side, to check what ports are really being used. And it could be your provider blocking some ports.
FW_SERVICES_EXT_TCP="6346 9192 http https ssh" FW_SERVICES_EXT_UDP=""
Try UDP as well.
FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no"
Set that to yes: you need to see everything that your firewall is dropping.
FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no"
-- Cheers, Carlos Robinson
On Monday 20 October 2003 13:58, Carlos E. R. wrote:
The 03.10.19 at 11:37, fsanta wrote:
Still not solved. I cannot get anyone to connect to me on port 6346 nor can I connect to anyone else. I have an adsl router with ports 21 and 80 NAT'ed to my box for my ftp and apache servers. Maybe I need to do something similar with 6346? I'm using gtk-gnutella. Please help. Thanks, Steve.
I'm sorry, but I don't use gnutella myself, so I'm not familiar with it. There could be issues with the router, analogous to netmeeting/gnomemeeting, perhaps...
There may be a FAQ on that program. Try their web page.
Did you try ethereal, to see what packets were reaching you? Or iptraf?
I would try between two computer sitting side by side, to check what ports are really being used.
And it could be your provider blocking some ports.
FW_SERVICES_EXT_TCP="6346 9192 http https ssh" FW_SERVICES_EXT_UDP=""
Try UDP as well.
FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="no"
Set that to yes: you need to see everything that your firewall is dropping.
FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="no"
-- Cheers, Carlos Robinson
Hi everyone. If I turn off the firewall I still can't connect or be connected to on 6346 although I can on 21 and 80. Is that correct behavior? There are some warnings from the application: ** WARNING **: file_info_retrieve_binary(): could not find trailer in /tmp/env.properties.5602 ** WARNING **: can't open "/tmp/session_mm_apache0.sem" for reading: Permission denied ** WARNING **: can't open "/tmp/xauth.XXXXOztGX8" for reading: Permission denied ** WARNING **: can't open "/tmp/install.fKGY5Y" for reading: Permission denied Anyone able to get anywhere near these before I go with the firewall logs? Cheers, Steve.
chmod -R that temp directory to 777 for now. Looks like some sorta of permission problem.. probably your gnutella is not running as root. Try mutella, pretty nice. I got that to work. gl henry
** WARNING **: file_info_retrieve_binary(): could not find trailer in /tmp/env.properties.5602
** WARNING **: can't open "/tmp/session_mm_apache0.sem" for reading: Permission denied
** WARNING **: can't open "/tmp/xauth.XXXXOztGX8" for reading: Permission denied
** WARNING **: can't open "/tmp/install.fKGY5Y" for reading: Permission denied
Anyone able to get anywhere near these before I go with the firewall logs? Cheers, Steve.
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
-------------------------------------------------------------------- This message was sent using Yu Creation Webmail powered by Horde IMP
Just to let you know that i got mutella (text based one) to work fine. However, it is on the routing computer, which could be different then setting it up on a computer behind firewall. henry Quoting "Carlos E. R." <robin1.listas@tiscali.es>:
The 03.10.13 at 09:41, Henry Tang wrote:
Set FW_LOG_DROP_ALL to yes as well?
Right.
Also how do you know what port fw is dropping? I can never figure out. I am tring to figure out why my microphone doesn't work through messenger.
Where is the port?
Oct 13 09:38:13 main kernel: SuSE-FW-DROP-DEFAULTIN=eth0 OUT= MAC=00:50:da:c4:1a:35:00:02:3b:01:16:46:08:00 SRC=66.93.119.161 DST=66.93.216.238 LEN=48 TOS=0x00 PREC=0x00 TTL=117 ID=40453 DF PROTO=TCP SPT=4009 DPT=135 WINDOW=16384 RES=0x00 SYN URGP=0 OPT (020405B401010402)
SPT and DPT: Source port, Destination port. But the above is not your microphone, I think. It could be that windows worm out there that it's trying port 135 all the time.
You can use ethereal to track you connection, and see what packets go out when you speak at the microphone: they are a lot.
-- Cheers, Carlos Robinson
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com
-------------------------------------------------------------------- This message was sent using Yu Creation Webmail powered by Horde IMP
Hi. Still no luck. It seems that my firewall is allowing the connection: Dec 9 12:19:54 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=68.33.60.84 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=108 ID=43842 PROTO=TCP SPT=6346 DPT=1130 WINDOW=0 RES=0x00 ACK RST URGP=0 But still others cannot connect and gtk-gnutells tells me I'm firewalled. Could it be something to do with my adsl router? thanks, Steve. Here is the config /stc/sysconfig/SuSEfirewall2: FW_QUICKMODE="no" FW_DEV_EXT="eth0" FW_DEV_INT="" FW_DEV_DMZ="" FW_ROUTE="yes" FW_MASQUERADE="yes" FW_MASQ_DEV="$FW_DEV_EXT" FW_MASQ_NETS="0/0" FW_PROTECT_FROM_INTERNAL="no" FW_AUTOPROTECT_SERVICES="no" FW_SERVICES_EXT_TCP="6346 9192 domain http https ssh" FW_SERVICES_EXT_UDP="domain 6346" FW_SERVICES_EXT_IP="" FW_SERVICES_DMZ_TCP="" FW_SERVICES_DMZ_UDP="" FW_SERVICES_DMZ_IP="" FW_SERVICES_INT_TCP="" FW_SERVICES_INT_UDP="" FW_SERVICES_INT_IP="" FW_SERVICES_QUICK_TCP="" FW_SERVICES_QUICK_UDP="" FW_SERVICES_QUICK_IP="" FW_TRUSTED_NETS="" FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" FW_ALLOW_INCOMING_HIGHPORTS_UDP="yes" FW_SERVICE_AUTODETECT="yes" FW_SERVICE_DNS="no" FW_SERVICE_DHCLIENT="no" FW_SERVICE_DHCPD="no" FW_SERVICE_SQUID="yes" FW_SERVICE_SAMBA="no" FW_FORWARD="" FW_FORWARD_MASQ="" FW_REDIRECT="192.168.1/24,0/0,tcp,80,3128" FW_LOG_DROP_CRIT="yes" FW_LOG_DROP_ALL="yes" FW_LOG_ACCEPT_CRIT="yes" FW_LOG_ACCEPT_ALL="yes" FW_LOG="--log-level warning --log-tcp-options --log-ip-option --log-prefix SuSE-FW" FW_KERNEL_SECURITY="yes" FW_STOP_KEEP_ROUTING_STATE="no" FW_ALLOW_PING_FW="yes" FW_ALLOW_PING_DMZ="no" FW_ALLOW_PING_EXT="no" FW_ALLOW_FW_TRACEROUTE="yes" FW_ALLOW_FW_SOURCEQUENCH="yes" FW_ALLOW_FW_BROADCAST="no" FW_IGNORE_FW_BROADCAST="yes" FW_ALLOW_CLASS_ROUTING="no" FW_CUSTOMRULES="" FW_REJECT="no" FW_HTB_TUNE_DEV=""
On Tuesday 09 December 2003 5:28 pm, steve-ss wrote:
But still others cannot connect and gtk-gnutells tells me I'm firewalled. Could it be something to do with my adsl router? thanks, Steve.
Yes. Most such routers include a fire wall, and assuming it is also doing NAT routing, you may have to open a port forwarding route. David
On Tuesday 09 December 2003 18:43, david stevenson wrote:
On Tuesday 09 December 2003 5:28 pm, steve-ss wrote:
But still others cannot connect and gtk-gnutells tells me I'm firewalled. Could it be something to do with my adsl router? thanks, Steve.
Yes. Most such routers include a fire wall, and assuming it is also doing NAT routing, you may have to open a port forwarding route.
David
Hi. The router is doing NAT routing for my web and ftp servers and is working fine. It forwards port 80 and 21 to my lan box at 192.168.1.2 where apache and vsftpd pick up the calls. Should I also forward 6346 to the same box even though the router is letting the calls through? Thanks, Steve.
On Tue, 2003-12-09 at 18:28, steve-ss wrote:
Hi. Still no luck. It seems that my firewall is allowing the connection:
Dec 9 12:19:54 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=68.33.60.84 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=108 ID=43842 PROTO=TCP SPT=6346 DPT=1130 WINDOW=0 RES=0x00 ACK RST URGP=0
If I look at the log description I do not see any port for going out. Therefor I beleive you have a routing problem. Is this a stand alone machine? You have only 1 ethernet card. Ian <snip> -- Freedom is not worth having if it does not include the freedom to make mistakes. Mahatma Gandhi
On Wednesday 10 December 2003 08:27, Ian David Laws wrote:
On Tue, 2003-12-09 at 18:28, steve-ss wrote:
Hi. Still no luck. It seems that my firewall is allowing the connection:
Dec 9 12:19:54 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=68.33.60.84 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=108 ID=43842 PROTO=TCP SPT=6346 DPT=1130 WINDOW=0 RES=0x00 ACK RST URGP=0
If I look at the log description I do not see any port for going out. Therefor I beleive you have a routing problem.
Is this a stand alone machine? You have only 1 ethernet card.
Ian
Hi. yes. it's a standalone machine linked to the internet via an adsl router with nat on ports 21 and 80. Steve.
steve-ss wrote:
On Wednesday 10 December 2003 08:27, Ian David Laws wrote:
On Tue, 2003-12-09 at 18:28, steve-ss wrote:
Hi. Still no luck. It seems that my firewall is allowing the connection:
Dec 9 12:19:54 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=68.33.60.84 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=108 ID=43842 PROTO=TCP SPT=6346 DPT=1130 WINDOW=0 RES=0x00 ACK RST URGP=0
If I look at the log description I do not see any port for going out. Therefor I beleive you have a routing problem.
Is this a stand alone machine? You have only 1 ethernet card.
Ian
Hi. yes. it's a standalone machine linked to the internet via an adsl router with nat on ports 21 and 80. Steve.
I'm using ports 6346 and 6347 (I think it needs both), both TCP/IP and UDP through my firewall which is a Cyrix M200, 16M, floppy and old video card (not really needed) and 2 NIC's, running BBIagent (floppy based) through a cable modem. In addition to gnutella, I use gnomemeeting, netmeeting under crossover plugin, hamradio VOIP and other stuff like Cisco VPN (24x7x365) without problems. Regards Sid. -- Sid Boyce .... Linux Only Shop.
On Wednesday 10 December 2003 17:33, Sid Boyce wrote:
steve-ss wrote:
On Wednesday 10 December 2003 08:27, Ian David Laws wrote:
On Tue, 2003-12-09 at 18:28, steve-ss wrote:
Hi. Still no luck. It seems that my firewall is allowing the connection:
Dec 9 12:19:54 polop kernel: SuSE-FW-ACCEPT IN=eth0 OUT= MAC=00:05:1c:10:ee:75:00:60:68:81:10:c7:08:00 SRC=68.33.60.84 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=108 ID=43842 PROTO=TCP SPT=6346 DPT=1130 WINDOW=0 RES=0x00 ACK RST URGP=0
If I look at the log description I do not see any port for going out. Therefor I beleive you have a routing problem.
Is this a stand alone machine? You have only 1 ethernet card.
Ian
Hi. yes. it's a standalone machine linked to the internet via an adsl router with nat on ports 21 and 80. Steve.
I'm using ports 6346 and 6347 (I think it needs both), both TCP/IP and UDP through my firewall
Hi. Still no luck with TCP and UDP on 6346 and 6347. Must be something to do with the router. I'm NAT'ing 6346 on the router to 192.168.1.2 which is the box where I'm running the firewall and gtk-gnutella. The same works fine for my http and ftp servers. Any clues? Thanks, Steve.
Hi. The NAT on my router was set to 'web'. Changing it to 'none' works. Thanks to all who helped over the last 3 months. Everyone now says I'm officially illegal. Steve.
participants (7)
-
Carlos E. R. -
david stevenson -
fsanta -
Henry Tang -
Ian David Laws -
Sid Boyce -
steve-ss