varun_saa@vsnl.net wrote:>
> Hello,
> My server is Mandrake 10.1
> eth0 is WAN with static IP connected to 512k DSL
> eth1 is LAN.
>
> I am using squid proxy for internet with NSCA auth.
> I am able to send and recieve mails.
>
> One of the client system wants to be able
> to make net2phone calls.
>
> As of now he is not able to.
>
> Howto allow net2phone calls ?
You have to know which ports you need to open up for net2phone, which
really doesn''t have anything to do with Shorewall...the net2phone
client
is your client, not the Shorewall community''s.
You have to visit Net2phone support:
http://web.net2phone.com/consumer/commcenter/helpfirewall.asp
which states that you need to open up at least three ports:
tcp 80 - tcp 6800 - udp 6801
If squid allows udp transport just make sure your net2phone client can
make their initial connection by logging in at relay.net2phone.com:80,
by adjusting the acl allow list.
Then you add two portforwarding rules:
DNAT net loc:<net2phone client ip> tcp 6800
DNAT net loc:<net2phone client ip> udp 6801
..according to net2phone''s documentation.
Preferably I would ask your net2phone client to investigate Skype and
possibly make a switchover. You don''t have to alter your firewall rules
at all...
http://www.skype.com/products/explained.html
--
Patrick Benson
Stockholm, Sweden