From owner-freebsd-questions Sat Apr 1 12:37:33 2000 Delivered-To: freebsd-questions@freebsd.org Received: from tardis.patho.gen.nz (tardis.patho.gen.nz [203.97.2.226]) by hub.freebsd.org (Postfix) with ESMTP id 442AD37B676 for ; Sat, 1 Apr 2000 12:37:29 -0800 (PST) (envelope-from roguetr@patho.gen.nz) Received: from patho.gen.nz (sammy.qsi.net.nz [202.89.128.130] (may be forged)) by tardis.patho.gen.nz (8.9.3/8.9.3) with ESMTP id IAA19864; Sun, 2 Apr 2000 08:37:12 +1200 (NZST) Message-ID: <38E65E03.C183816E@patho.gen.nz> Date: Sun, 02 Apr 2000 08:37:23 +1200 From: "Sarton O'Brien" X-Mailer: Mozilla 4.7 [en] (Win98; I) X-Accept-Language: en MIME-Version: 1.0 To: C J Michaels Cc: FreeBSD Questions Subject: Re: ppp -nat port redirection References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG sammy# uname -a FreeBSD xxx.xxx.net.nz 3.4-20000217-STABLE FreeBSD 3.4-20000217-STABLE #0: Wed Feb 23 11:16:38 NZDT 2000 roguetr@rogues.lair.nz:/usr/src/sys/compile/ROGUETR i386 I've repeatedly tried to specify the range, in the ppp.conf file and through pppctl but still only the singular ports specified work. The only way I can see to beat this is redirect a couple of hundred ports manually. I swear the first time I specified the range a file tranfer worked and then after that not again. There are no errors, all the nat commands are successful, I've checked the ppp.log aswell. I don't know how to use the alias.log effectively tho, but it is there. C J Michaels wrote: > > What version of FreeBSD are you running? Maybe it's the ppp that's causing > the problem. I'm not quite sure. > > -Chris > > -----Original Message----- > From: Sarton O'Brien [mailto:roguetr@patho.gen.nz] > Sent: Friday, March 31, 2000 2:02 AM > To: C J Michaels > Subject: Re: ppp -nat port redirection > > > Hey no problem. ICQ doesn't have specific port ranges it uses. It's > fairly > > random. > > > > You have 3 options as I see it: > > 1. Live with the way ICQ performs behind nat (yuck). > > 2. Install a SOCKS5 proxy (semi-yuck, but it works better). > > 3. Reserve a small range of ports for each machine running icq. Then > > configure ICQ to be behind a firewall and to only use those port ranges. > > That's actually what the example below is used for. > > > > I've done all three. I've currently using 2 out of necessity (isp issue, > > don't ask) but when I was able to use option 3 it worked the best. > > > > Hope this helps. > > -Chris > > I seemed to get it going with setup No. 3, for one file transfer and > then it stopped. > > Icq is setup correctly and I have nailed the problem back to nat. I > tested by specifying one port: > > nat port udp 192.168.0.2:30000 30000 > > and it redirected as required. I then tried specifying the range: > > nat port udp 192.168.0.2:30000-30500 30000-30500 > > and port 30000 would still redirect but nothing else within the range. > When specifying a range, no > redirction, sigular port, redirection. I'm stumped. I seem to be > specifying everything correctly. > > Once again, thanks for your help. > > Sarton O'Brien > > PS. Still at home with no mailing list, CC is appreciated. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message