From owner-freebsd-security  Wed Feb 10 15:14:46 1999
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id PAA04642
          for freebsd-security-outgoing; Wed, 10 Feb 1999 15:14:46 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from inet.chip-web.com (c1003518-a.plstn1.sfba.home.com [24.1.82.47])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id PAA04636
          for <security@FreeBSD.ORG>; Wed, 10 Feb 1999 15:14:44 -0800 (PST)
          (envelope-from ludwigp@bigfoot.com)
Received: (qmail 24532 invoked from network); 10 Feb 1999 23:14:43 -0000
Received: from speedy.chip-web.com (HELO speedy) (172.16.1.1)
  by inet.chip-web.com with SMTP; 10 Feb 1999 23:14:43 -0000
Message-Id: <4.1.19990210150955.009f3e80@mail-r>
X-Sender: ludwigp2@mail-r
X-Mailer: QUALCOMM Windows Eudora Pro Version 4.1 
Date: Wed, 10 Feb 1999 15:13:52 -0800
To: Drew Derbyshire <software@kew.com>, security@FreeBSD.ORG
From: Ludwig Pummer <ludwigp@bigfoot.com>
Subject: Re: firewall with SOCKS5, UDP, ICQ
In-Reply-To: <36C19674.F553CB64@kew.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

At 06:23 AM 2/10/99 , Drew Derbyshire wrote:
>I've got a firewall running FreeBSD 2.2.7-RELEASE.  Because the ICQ Windows
>client longs for UDP support, I've installed the  socks5-v1.0r8 server, but
>keep seeing the following errors:
>
>Feb 10 09:07:31 pandora Socks5[9147]: Socks5 starting at Wed Feb 10 09:07:31 
>1999 from inetd
>Feb 10 09:07:31 pandora Socks5[9147]: UDP Proxy Request: 
>(lucia.hh.kew.com:1177) for user thomas
>Feb 10 09:07:31 pandora Socks5[9147]: UDP Proxy Established: 
>(lucia.hh.kew.com:1178) for user thomas

Those aren't errors. Socks5 likes to log everything to wherever root is
logged in.

>Now, I don't care about the errors per se, but the general functionality of
>the ICQ client behind the firewall is affected by as opposed to on a bare dial
>connection is noticeable, such as server time outs and the like.

I've noticed the same thing for a while. What seems to work for me
(finally) is ICQ 99a (www.icq99.com), with the SOCKS5 server set (internal
and external IPs, no hostnames), 'Always use Real IP' off, and I did an
nslookup on icqalpha.mirabilis.com and entered all of the IP addresses into
my servers list, one-by-one.

BTW, I'm running from a cable modem with a static IP.

--Ludwig Pummer ( ludwigp@bigfoot.com )
ICQ UIN: 692441 (  ludwigp@email.com  )

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message