Outbound and Inbound Rules for GTK-Gnutella (Linux Box with iptables)
|
View:
New views
3 Messages
—
Rating Filter:
Alert me
|
 |
Outbound and Inbound Rules for GTK-Gnutella (Linux Box with iptables)
by Simon Jolle sjolle
::
Rate this Message:
Hi Gnutella Users
What inbound and outbound ports are used by GTK Gnutella? My default Policy is to drop everything in and out band. So far I have $FW -A INPUT -i $EXT_IF -p tcp --dport 8114 -j ACCEPT $FW -A INPUT -i $EXT_IF -p udp --dport 8114 -j ACCEPT (this I read in FAQ and its identical to the GUI settings) but still see in logs Aug 15 18:18:00 playstation kernel: [ 1733.872000] IN= OUT=eth0 SRC=10.104.23.249 DST=217.87.123.77 LEN=67 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=8114 DPT=1337 LEN=47 Aug 15 18:18:30 playstation kernel: [ 1764.116000] IN= OUT=eth0 SRC=10.104.23.249 DST=62.75.169.97 LEN=67 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=8114 DPT=9999 LEN=47 Aug 15 18:18:51 playstation kernel: [ 1785.088000] IN= OUT=eth0 SRC=10.104.23.249 DST=82.94.222.186 LEN=67 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=8114 DPT=20098 LEN=47 Aug 15 18:19:11 playstation kernel: [ 1805.224000] IN= OUT=eth0 SRC=10.104.23.249 DST=85.214.73.213 LEN=67 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=8114 DPT=6666 LEN=47 Aug 15 18:19:31 playstation kernel: [ 1825.352000] IN= OUT=eth0 SRC=10.104.23.249 DST=83.125.33.40 LEN=67 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=8114 DPT=9999 LEN=47 Aug 15 18:19:52 playstation kernel: [ 1845.904000] IN= OUT=eth0 SRC=10.104.23.249 DST=64.156.82.106 LEN=67 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=8114 DPT=20181 LEN=47 thank you Simon -- XMPP: sjolle@... ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ gtk-gnutella-users mailing list gtk-gnutella-users@... https://lists.sourceforge.net/lists/listinfo/gtk-gnutella-users |
|
|
Re: Outbound and Inbound Rules for GTK-Gnutella (Linux Box with iptables)
by Christian Biere
::
Rate this Message:
Simon Jolle wrote:
> What inbound and outbound ports are used by GTK Gnutella? My default > Policy is to drop everything in and out band. > > So far I have > > $FW -A INPUT -i $EXT_IF -p tcp --dport 8114 -j ACCEPT > $FW -A INPUT -i $EXT_IF -p udp --dport 8114 -j ACCEPT > > (this I read in FAQ and its identical to the GUI settings) This allows only incoming TCP connections and incoming UDP packets. Since you drop everything by default, you won't be able to connect to anywhere. For UDP outgoing you need something like the following. Maybe you want to limit it to unprivileged ports. Thus: $FW -A OUTPUT -i $EXT_IF -p udp --sport 8114 --dport 1024:65535 -j ACCEPT For TCP, you basically have to allow everything outgoing. You can limit it to unprivileged ports, if you prefer. Thus something like this: $FW -A OUTPUT -i $EXT_IF -p tcp --dport 1024:65535 -j ACCEPT -- Christian ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ gtk-gnutella-users mailing list gtk-gnutella-users@... https://lists.sourceforge.net/lists/listinfo/gtk-gnutella-users |
|
|
Re: Outbound and Inbound Rules for GTK-Gnutella (Linux Box with iptables)
by Bill Pringlemeir
::
Rate this Message:
On 15 Aug 2007, urandomdev@... wrote:
> What inbound and outbound ports are used by GTK Gnutella? My default > Policy is to drop everything in and out band. > So far I have >> $FW -A INPUT -i $EXT_IF -p tcp --dport 8114 -j ACCEPT >> $FW -A INPUT -i $EXT_IF -p udp --dport 8114 -j ACCEPT > but still see in logs > Aug 15 18:18:00 playstation kernel: [ 1733.872000] IN= OUT=eth0 > SRC=10.104.23.249 DST=217.87.123.77 LEN=67 TOS=0x00 PREC=0x00 TTL=64 > ID=0 DF PROTO=UDP SPT=8114 DPT=1337 LEN=47 Read the log message. "SPT=8114". You have used "--dport". You should change that to "--sport"; or use both. Also, we don't know if you are using ipfwd, ipchains, or iptables? ... nor even which OS you are using. Also, what is the URL that you are talking about? Maybe we can fix it, if the information doesn't work? This url, "http://gtk-gnutella.sourceforge.net/manual/networking.html" is talking about something else. Ie, you have two machines. One is a NAT machine and the other runs gtk-gnutella. The rule listed must run on the nat machine to forward incoming traffic to the gtk-gnutella machine. Rules will be different if the machine running gtk-gnutella is directly connected to the internet. You didn't really say anything about your network structure either. Thanks, Bill Pringlemeir. ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ gtk-gnutella-users mailing list gtk-gnutella-users@... https://lists.sourceforge.net/lists/listinfo/gtk-gnutella-users |
| Free embeddable forum powered by Nabble | Forum Help |
