From owner-freebsd-questions@FreeBSD.ORG Sun Nov 30 08:40:21 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 1C1781065742 for ; Sun, 30 Nov 2008 08:40:21 +0000 (UTC) (envelope-from fbsd1@a1poweruser.com) Received: from mail-03.name-services.com (mail-03.name-services.com [69.64.155.195]) by mx1.freebsd.org (Postfix) with ESMTP id 0C54A8FC14 for ; Sun, 30 Nov 2008 08:40:20 +0000 (UTC) (envelope-from fbsd1@a1poweruser.com) Received: from [10.0.10.6] ([202.69.173.174]) by mail-03.name-services.com with Microsoft SMTPSVC(6.0.3790.3959); Sun, 30 Nov 2008 00:39:03 -0800 Message-ID: <49325198.2060008@a1poweruser.com> Date: Sun, 30 Nov 2008 16:40:56 +0800 From: Fbsd1 User-Agent: Thunderbird 2.0.0.17 (Windows/20080914) MIME-Version: 1.0 To: eculp@casasponti.net References: <492E60A8.6080105@a1poweruser.com> <492F82D1.4020000@bah.homeip.net> <492F8E9B.5040805@a1poweruser.com> <492F95EB.8080308@bah.homeip.net> <492F9B68.8080407@a1poweruser.com> <20081128051410.17qwm4xctjy8w4sck@intranet.casasponti.net> In-Reply-To: <20081128051410.17qwm4xctjy8w4sck@intranet.casasponti.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 30 Nov 2008 08:39:03.0916 (UTC) FILETIME=[19A7B2C0:01C952C7] X-Sender: fbsd1@a1poweruser.com Cc: freebsd-questions@freebsd.org Subject: Re: pf or ipf rules to allow p2p Limewire through X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 30 Nov 2008 08:40:21 -0000 >> eculp@casasponti.net wrote: >> >> So on the Limewire "Advanced -> Firewall" config page enter a port >> number, such as 6346 in both the "Listen on Port" and the "Manual Port >> Forward" boxes. >> >> Then after your NAT rule in pf.conf enter something like the following: >> >> rdr on $ExtIF proto tcp from any to any port 6346 -> 192.168.10.2 port >> 6346 >> >> and a corresponding filter pass rule: >> >> in both the "Listen on Port" and the "Manual Port >> Forward" boxes. >> >> 192.168.10.2 is my desktop machine where I use Limewire. It works just >> fine. >> >> Thank you for the solution to this problem. I was un-aware Limewire had it's own firewall configuration options. In Limewire version 4.18 Tools/Options/Advanced/Firewall I entered the same port number 6666 in both the "Listen on Port" and the "Manual Port Forward" option fill in boxes. Then in IPF rules added these 2 lines. pass out quick on $oif proto igmp from any to any keep state pass out quick on $oif proto tcp from any to any port = 6666 flags S keep state Each XP box on the lan running Limewire gets it's own unique port number and the corresponding firewall rule. No need for NAT RDR rules. Limewire works fine and my firewall is tight as every.