Date: Mon, 16 Feb 1998 14:16:41 -0800 From: Ludwig Pummer <ludwigp@bigfoot.com> To: Doug White <dwhite@resnet.uoregon.edu>, Mark Castillo <mark@relationships.com> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: SOCKS or NAT Message-ID: <3.0.3.32.19980216141641.0337eea0@mail.plstn1.sfba.home.com> In-Reply-To: <Pine.BSF.3.96.980216112759.10577I-100000@gdi.uoregon.edu> References: <004f01bd38cd$90774a70$c800a8c0@phineas>
next in thread | previous in thread | raw e-mail | index | archive | help
At 11:28 AM 2/16/98 -0800, Doug White wrote: >On Fri, 13 Feb 1998, Mark Castillo wrote: > >> I am planning on installing a small network of about 3-5 pc's. One will be >> FreeBSD connected to ASDL and local ethernet (192.168.0.x). We will only be >> using outbound www, ftp, and email, and possibly use ICQ. Is it easier to >> use a SOCKS server (with socksified clients) or "natd"? > >natd by a long shot. SOCKS requres SOCKSified clients. > >Doug White | University of Oregon >Internet: dwhite@resnet.uoregon.edu | Residence Networking Assistant >http://gladstone.uoregon.edu/~dwhite | Computer Science Major I've found ICQ is quite picky about working through a natd / SOCKSed machine. I've got 5 systems connected via a cable modem and was using NEC's SOCKS5 for a while. This worked _sometimes_. ICQ would take forever to connect when using the SOCKS5 method, but i could usually get incoming direct connections (chat requests, file transfers). Using the SOCKS4 method, ICQ connected more quickly, but i couldn't get incoming direct connections. I finally used natd's port -> ip:port redirection and set up 15 incoming TCP ports for each ICQ machine. ICQ is set to use those 15 incoming TCP ports instead of communicating with a SOCKS firewall. That's been working very well for a few weeks now. Two notes: 1) ICQ still uses incoming UDP to communicate with the ICQ servers, but natd is intelligent about those. 2) ICQ doesn't seem to work too well with SOCKS5. I saw in /var/log/messages that ICQ was requesting a port, getting a different one (one or two ports higher than it requested), closing that port, and requesting another. I think Mirabilis needs to worka on their SOCKS5 support. --Ludwig Pummer ludwigp@bigfoot.com ICQ UIN: 692441 http://chipweb.home.ml.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.3.32.19980216141641.0337eea0>