Mailinglist Archive: opensuse-security (601 mails)

< Previous Next >
SuSEfirewall and MSN Gaming Zone
  • From: "Lars Sagen" <lars.sagen@xxxxxxxxx>
  • Date: Wed, 9 Aug 2000 15:42:00 +0200
  • Message-id: <LOBBKHFBEBBCKLGNOMCLCEENCHAA.lars.sagen@xxxxxxxxx>
Can anybody tell me what too do.
I wont to access MSN Gaming Zone with DirectX

SuSE 6.4 and SuSEfirewall 2.1
How to config this in SuSEfirewall

Microsoft spec. to play games on MSN Gaming Zone
TCP ports open
6667
28800-29000

DirectX ports
Connection Client Host
TCP 47624 Outbound 47624 Innbound
TCP Innb. 2300-2400 2300-2400
TCP Outb. 2300-2400 2300-2400
UDP Innb. 2300-2400 2300-2400
UDP Outb. 2300-2400 2300-2400

My firewall.rc.config are like this:
I now that this script are litle too open, but i am new on this and try too
learn.


FW_DEV_WORLD="eth0"
FW_DEV_INT="eth1"
FW_DEV_DMZ=""
FW_ROUTE="yes"
FW_MASQUERADE="yes"
FW_MASQ_NETS="192.168.0.0/24"
FW_MASQ_DEV="$FW_DEV_WORLD" # e.g. "ippp0" or "$FW_DEV_WORLD"
FW_PROTECT_FROM_INTERNAL="no"
FW_AUTOPROTECT_GLOBAL_SERVICES="no" # "yes" is a good choice
FW_SERVICES_EXTERNAL_TCP="www ssh 10000" # Common: smtp domain
FW_SERVICES_EXTERNAL_UDP="" # Common: domain

FW_SERVICES_DMZ_TCP="" # Common: smtp domain
FW_SERVICES_DMZ_UDP="" # Common: domain syslog

FW_SERVICES_INTERNAL_TCP="ssh" # Common: ssh smtp domain
FW_SERVICES_INTERNAL_UDP="" # Common: domain

FW_TRUSTED_NETS="192.168.0.0/24"
FW_SERVICES_TRUSTED_TCP="1:65535" # Common: ssh
FW_SERVICES_TRUSTED_UDP="1:65535" # Common: syslog time ntp
FW_ALLOW_INCOMING_HIGHPORTS_TCP="yes" # Common: "ftp-data" (sadly!)
FW_ALLOW_INCOMING_HIGHPORTS_UDP="yes" # Common: "dns"
FW_SERVICE_DNS="no" # if yes, FW_TCP_SERVICES_* needs to have port 53
# (or "domain") set to allow incoming queries.
# also FW_ALLOW_INCOMING_HIGHPORTS_UDP needs to be "yes"
FW_SERVICE_DHCLIENT="yes" # if you use dhclient to get an ip address
# you have to set this to "yes" !
FW_SERVICE_DHCPD="yes" # set to yes, if this server is a DHCP server

FW_FORWARD_TCP="" # Beware to use this!
FW_FORWARD_UDP="" # Beware to use this!
FW_REDIRECT_TCP=""
FW_REDIRECT_UDP=""

FW_LOG_DENY_CRIT="yes"
FW_LOG_DENY_ALL="yes"
FW_LOG_ACCEPT_CRIT="no"
FW_LOG_ACCEPT_ALL="no"

FW_KERNEL_SECURITY="yes"

FW_STOP_KEEP_ROUTING_STATE="no"
FW_ALLOW_PING_FW="yes"
FW_ALLOW_PING_DMZ="yes"

# END of rc.firewall



Lars Sagen LS Data
mob 95121400
e-post lars.sagen@xxxxxxxxx
e-mob ls.mob@xxxxxxxxx

< Previous Next >
Follow Ups