Hi all... I have configure a Shorewall gateway to my little lan im my home. The shorewall work fine here... However, when I try to use Limewire, I can download nothing.... On fact, I can''t get any high connection on Limewire.. What can I do to make Limewire work properly behind a Shorewall gateway???? May be I have to open all port (both tcp and udp), but how? Thanks a lot... Best regards... -- Gilberto Nunes ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Hello
Gilberto, i have not used limewire, but i think you have to know the
ports it uses for making your clients accept connections from others. After
that, in your rules file you have to add a DNAT entry to redirect the
traffic to machine where limewire is running. Something like that:
DNAT net loc:192.168.100.10:46010 tcp 46010
DNAT net loc:192.168.100.10:46010 udp 46010
in this example i have emule listening both tcp and udp in port 46010 in
192.168.100.10.
Fabio R Correa
2008/10/13 Gilberto Nunes <gilberto.nunes32@gmail.com>
> Hi all...
>
> I have configure a Shorewall gateway to my little lan im my home.
> The shorewall work fine here...
> However, when I try to use Limewire, I can download nothing....
> On fact, I can''t get any high connection on Limewire..
> What can I do to make Limewire work properly behind a Shorewall gateway????
> May be I have to open all port (both tcp and udp), but how?
>
> Thanks a lot...
> Best regards...
>
>
> --
> Gilberto Nunes
>
>
> -------------------------------------------------------------------------
> This SF.Net email is sponsored by the Moblin Your Move Developer''s
> challenge
> Build the coolest Linux based applications with Moblin SDK & win great
> prizes
> Grand prize is a trip for two to an Open Source event anywhere in the world
> http://moblin-contest.org/redirect.php?banner_id=100&url=/
> _______________________________________________
> Shorewall-users mailing list
> Shorewall-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
>
>
-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer''s
challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/
Hi I think with this rules you are allowing traffic from loc to net from port 1024 Fabio R Correa. 2008/10/14 Gilberto Nunes <gilberto.nunes32@gmail.com>> Hi > > Thank you for your response Carlos... > > I follow your instruction, but I can''t get any result... > I change the port 46010 in your instruction to 6346 and 17107, both tcp and > udp, I make changes on rules file at /etc/shorewall. > However nothing happen... > But, I do thia change on rules: > > ACCEPT loc net tcp 1024: > ACCEPT loc net udp 1024: > > So, with this line I can connect with Limewire. > But I afraid that this line open all port above 1024... > Am I right? > > > > Em Seg, 2008-10-13 às 18:27 -0200, Fabio Correa escreveu: > > Hello > > Gilberto, i have not used limewire, but i think you have to know the > ports it uses for making your clients accept connections from others. After > that, in your rules file you have to add a DNAT entry to redirect the > traffic to machine where limewire is running. Something like that: > > DNAT net loc:192.168.100.10:46010 tcp 46010 > DNAT net loc:192.168.100.10:46010 udp 46010 > > in this example i have emule listening both tcp and udp in port 46010 in > 192.168.100.10. > > Fabio R Correa > > 2008/10/13 Gilberto Nunes <gilberto.nunes32@gmail.com> > > Hi all... > > I have configure a Shorewall gateway to my little lan im my home. > The shorewall work fine here... > However, when I try to use Limewire, I can download nothing.... > On fact, I can''t get any high connection on Limewire.. > What can I do to make Limewire work properly behind a Shorewall gateway???? > May be I have to open all port (both tcp and udp), but how? > > Thanks a lot... > Best regards... > > > -- > Gilberto Nunes > > > ------------------------------------------------------------------------- > This SF.Net email is sponsored by the Moblin Your Move Developer''s > challenge > Build the coolest Linux based applications with Moblin SDK & win great > prizes > Grand prize is a trip for two to an Open Source event anywhere in the world > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > > ------------------------------------------------------------------------- > This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge > Build the coolest Linux based applications with Moblin SDK & win great prizes > Grand prize is a trip for two to an Open Source event anywhere in the worldhttp://moblin-contest.org/redirect.php?banner_id=100&url=/ > _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users > > -- > Gilberto Nunes > > > ------------------------------------------------------------------------- > This SF.Net email is sponsored by the Moblin Your Move Developer''s > challenge > Build the coolest Linux based applications with Moblin SDK & win great > prizes > Grand prize is a trip for two to an Open Source event anywhere in the world > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > >------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Gilberto Nunes wrote:> Hi > > May be... > But I put this: > ACCEPT loc:172.18.0.100 net > tcp 1024: > ACCEPT loc:172.18.0.100 net > udp 1024: > > And work properly for me...With any setup based on the Shorewall HOWTOs, such rules are unnecessary because the loc->net policy is ACCEPT (unless you have placed overriding REJECT or DROP loc->net rules in /etc/shorewall/rules). if you have a loc->net policy other than ACCEPT then you have to understand what all allowed loc->net connections are and you must add rules accordingly. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Gilberto Nunes wrote:> Hi > > May be... > But I put this: > ACCEPT loc:172.18.0.100 net > tcp 1024: > ACCEPT loc:172.18.0.100 net > udp 1024: > > And work properly for me... > >Think you have a default policy of DROP or REJECT for traffic from loc -> net, that would require some rules to be present to allow the traffic to flow, like above. Can't tell from here what your config is without a shorewall dump.> > Em Ter, 2008-10-14 às 14:16 -0300, Fabio Correa escreveu: >> Hi >> >> I think with this rules you are allowing traffic from loc to net from >> port 1024 >> >> >> Fabio R Correa. >>The above rules translate to "ACCEPT local traffic from 172.18.0.100 with a tcp/udp source port above 1024 (the : is the key here) bound for the net zone" Jerry ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users