From owner-freebsd-ipfw@freebsd.org Wed Nov 25 05:00:22 2015 Return-Path: Delivered-To: freebsd-ipfw@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 3E3F3A379AC for ; Wed, 25 Nov 2015 05:00:22 +0000 (UTC) (envelope-from graham@menhennitt.com.au) Received: from homiemail-a92.g.dreamhost.com (sub5.mail.dreamhost.com [208.113.200.129]) by mx1.freebsd.org (Postfix) with ESMTP id 1DAE81213 for ; Wed, 25 Nov 2015 05:00:21 +0000 (UTC) (envelope-from graham@menhennitt.com.au) Received: from homiemail-a92.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a92.g.dreamhost.com (Postfix) with ESMTP id E7ED93DC05E for ; Tue, 24 Nov 2015 21:00:14 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=menhennitt.com.au; h=to :from:subject:message-id:date:mime-version:content-type: content-transfer-encoding; s=menhennitt.com.au; bh=HbZ7fjFbwgktn EOmVjRDaRf4uIg=; b=e51VxR21yeXpw9Sm8T1iL9+zuOQ2pHic8N6MalJwFBLxU 1t5qJlWGXlRmfGVXEe0lhI4VqU6XHom34bXmVpQ86GamfXeZo0UqseIdk+lFGy/C vEpuDJ63WCvZDh1ZuqjbIxqI9TNQifYNXghVRB6Spo1x3ybJ61vK7jenBa9S2o= Received: from [203.2.73.68] (c122-107-214-88.mckinn3.vic.optusnet.com.au [122.107.214.88]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: graham@menhennitt.com.au) by homiemail-a92.g.dreamhost.com (Postfix) with ESMTPSA id 65DF53DC05B for ; Tue, 24 Nov 2015 21:00:14 -0800 (PST) To: freebsd-ipfw@freebsd.org From: Graham Menhennitt Subject: connecting a PS4 via IPFW X-Enigmail-Draft-Status: N1110 Message-ID: <5655405C.1060301@menhennitt.com.au> Date: Wed, 25 Nov 2015 16:00:12 +1100 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:38.0) Gecko/20100101 Thunderbird/38.3.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-BeenThere: freebsd-ipfw@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: IPFW Technical Discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Nov 2015 05:00:22 -0000 Hello IPFWers, I have a box running FreeBSD 10-stable that I use as a router/firewall/NAT. It runs IPFW and uses kernel NAT. My son is nagging me about playing multi-player online games on his Sony PS4. >From what I've read, I could enable UPnP. But I've tried compiling the net/miniupnpd port but it won't build for IPFW (and I don't want to convert to PF). Giving up on that, I'm now trying to enable port forwarding - apparently, this will fix it. I've allocated the PS4 a static IP address on my LAN. I need to port forward TCP ports 80, 443, 1935, 3478-3480, and UDP ports 3478-3479. I've tried the following command: ipfw nat 1 config \ redirect_port tcp ${PS4_LAN_ADDRESS}:1935 80 \ redirect_port tcp ${PS4_LAN_ADDRESS}:1935 443 \ redirect_port tcp ${PS4_LAN_ADDRESS}:1935 1935 \ redirect_port tcp ${PS4_LAN_ADDRESS}:3478 3478 \ redirect_port tcp ${PS4_LAN_ADDRESS}:3479 3479 \ redirect_port tcp ${PS4_LAN_ADDRESS}:3480 3480 \ redirect_port udp ${PS4_LAN_ADDRESS}:3478 3478 \ redirect_port udp ${PS4_LAN_ADDRESS}:3479 3479 but that completely kills my Internet connection for all other uses (and the PS4 still doesn't work!). Could somebody please give me some clues. Also, what are the risks of doing this port forwarding? Thanks, Graham