From owner-freebsd-questions@freebsd.org Fri Feb 26 12:49:34 2016 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id CC990AB512E for ; Fri, 26 Feb 2016 12:49:34 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com [66.111.4.29]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id A4D401A87 for ; Fri, 26 Feb 2016 12:49:33 +0000 (UTC) (envelope-from feld@FreeBSD.org) Received: from compute6.internal (compute6.nyi.internal [10.202.2.46]) by mailout.nyi.internal (Postfix) with ESMTP id 59C3120706 for ; Fri, 26 Feb 2016 07:49:27 -0500 (EST) Received: from frontend2 ([10.202.2.161]) by compute6.internal (MEProxy); Fri, 26 Feb 2016 07:49:27 -0500 DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-sasl-enc:x-sasl-enc; s=smtpout; bh=8mm92XCmSnvH2vW FRws+D4r39q4=; b=oQifxj9FALYnfH4z+m/L7XaQV91valHiGzohvb3vyDcangc hfD89c6XB1osj/ilQzdUHc6fW/jISvlsfnW8CSE5xp9B48PNoLH3RdoTQpqPHaKH NVs8P1LoDcL8iktw2WLzb4tpze6EfIEDk3zzmRooAzrZ/76Yc4xXog7XMttg= X-Sasl-enc: uuunbs/kGv47TzwNoJDSlMRzWOECDUsMRpfeNJbNgJyZ 1456490966 Received: from [172.16.1.172] (68-117-126-78.static.mdsn.wi.charter.com [68.117.126.78]) by mail.messagingengine.com (Postfix) with ESMTPA id A755768014B; Fri, 26 Feb 2016 07:49:26 -0500 (EST) Mime-Version: 1.0 (1.0) Subject: Re: WhatsApp Calls through IPFilter - How do I allow? From: Mark Felder X-Mailer: iPhone Mail (13E5214d) In-Reply-To: Date: Fri, 26 Feb 2016 06:49:25 -0600 Cc: User Questions Message-Id: <6458F1DB-6E78-44E3-92F2-3E684BEA16FA@FreeBSD.org> References: <1456412447.3227197.531722746.2BC3D996@webmail.messagingengine.com> To: Odhiambo Washington Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.20 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 26 Feb 2016 12:49:35 -0000 > On Feb 26, 2016, at 01:56, Odhiambo Washington wrote:= >=20 >=20 >=20 >> On 25 February 2016 at 18:00, Mark Felder wrote: >>=20 >>=20 >> On Thu, Feb 25, 2016, at 05:04, Odhiambo Washington wrote: >> > I have a network where FreeBSD acts as the gateway. I use IPFilter as t= he >> > firewall. >> > >> > I have users with smartphones who'd like to use Whatsapp call feature b= ut >> > the firewall is blocking these. I have googled and found >> > https://github.com/ukanth/afwall/issues/358 which seems to talk about t= he >> > ports that I need to open, but even after following that, I still canno= t >> > get this working. My IPFilter rules are these -> >> > http://pastebin.com/77YrMEEG >> > >> > Hopefully someone can see what I am missing or knows what I should do. >> > I am currently away from the box and with bad Internet, I cannot easily= >> > do >> > packet capture to analyze... I know iy sounds lazy, but I also hope thi= s >> > wheel has already been invented and is spinning already... >> > >> > >>=20 >> Do you end up getting log entries for the blocked traffic? >>=20 >> -- >> Mark Felder >> ports-secteam member >> feld@FreeBSD.org >=20 >=20 > I do't see anything written to the logfile. > However, I have identified the rules blocking the traffic. I just need to g= et the ports used by Whatsapp for calls and I'll get this sorted. >=20 After some searching I was able to find someone who claims "The voice server= connects only, as mentioned, 59437 - 59581 (the first time) and this goes t= hrough port 5222." I also came across this URL containing all the whatsapp IPs: http://www.what= sapp.com/cidr.txt If you still can't get this sorted out I can try emailing a contact I have a= t Whatsapp to see if he can provide further details.=