From owner-freebsd-questions Mon May 21 17:39:24 2001 Delivered-To: freebsd-questions@freebsd.org Received: from hotmail.com (oe24.law11.hotmail.com [64.4.16.81]) by hub.freebsd.org (Postfix) with ESMTP id 5E0AF37B422 for ; Mon, 21 May 2001 17:39:18 -0700 (PDT) (envelope-from vipor_1@hotmail.com) Received: from mail pickup service by hotmail.com with Microsoft SMTPSVC; Mon, 21 May 2001 17:39:18 -0700 X-Originating-IP: [24.0.136.97] Reply-To: "vipor" From: "vipor" To: Subject: I need help with ipfw Date: Mon, 21 May 2001 17:41:10 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_000D_01C0E21D.391859C0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Message-ID: X-OriginalArrivalTime: 22 May 2001 00:39:18.0206 (UTC) FILETIME=[A2762DE0:01C0E257] Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. ------=_NextPart_000_000D_01C0E21D.391859C0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hello, I have a freebsd 4.3 stable running natd with IPFW. natd_interface=3D"ed0" # Outside interface oif=3D"ed0" # Inside interface iif=3D"xl0" I would like to know how to set up my ipfw to allow in or out going = tcp or udp packets !!! I am trying to play some online games at msn gaming zone ---> http://zone.msn.com but my lan computers are unable to do this.So I looked udp / tcp ports that should be open but i am unable to get it to work !!! here is all of the info that i have. ###################################################################### # # This article describes the ports required to play games with other = players on the MSN # Gaming Zone through a firewall, proxy server, Network Address = Translation (NAT), # or Internet Connection Sharing (ICS). # MORE INFORMATION # To play games on the MSN Gaming Zone through a network firewall or = proxy server, # the following requirements must be met: # Your network administrator must configure the firewall or proxy server = to allow the # games to pass information through the proxy server or firewall. # The following TCP ports on the firewall must be open: 6667 28800 - 29000 Connection Initial TCP Connection 47624 Outbound 47624 Inbound Subsequent TCP Inbound 2300-2400 Subsequent TCP Outbound 2300-2400 Subsequent UDP Inbound 2300-2400 Subsequent UDP Outbound 2300-2400 ###################################################### # #THIS IS WHAT I HAVE TRIED BUT IT DOES NOT WORK...8-( # TCP RULES ${fwcmd} add pass tcp from any 6667 to any 6667 ${fwcmd} add pass tcp from any 2300-2400 to any 2300-2400 ${fwcmd} add pass tcp from any 47624 to any 47624 ${fwcmd} add pass tcp from any 28800-29000 to any 28800-29000 # TCP RULES ${fwcmd} add pass tcp from any 6667 to any 6667 ${fwcmd} add pass tcp from any 2300-2400 to any 2300-2400 ${fwcmd} add pass tcp from any 47624 to any 47624 ${fwcmd} add pass tcp from any 28800-29000 to any 28800-2900 I am open to any suggestions!!!!!! and if you need any more info just ask and i will try to get it.. Thanks for taking the time to read this 8-) laters VIPOR vipor_1@hotmail.com ------=_NextPart_000_000D_01C0E21D.391859C0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hello,

I have a freebsd 4.3 stable running natd with=20 IPFW.
natd_interface=3D"ed0"

# Outside = interface
oif=3D"ed0"

#=20 Inside interface
iif=3D"xl0"

I would like to know how to set = up my ipfw=20 to allow  in or out  going tcp or
udp packets !!!
I am = trying to=20 play some online games at msn gaming zone --->
http://zone.msn.com


but = my lan=20 computers are unable to do this.So I looked  udp /
tcp ports = that should=20 be  open
but i am unable to get  it to   work !!! = here is=20 all of the info that=20 i
have.

#######################################################= ###############
#
#=20 This article describes the ports required to play games with other = players
on=20 the MSN
# Gaming Zone through a firewall, proxy server, Network = Address=20 Translation
(NAT),
# or Internet Connection Sharing (ICS).
# = MORE=20 INFORMATION
# To play games on the MSN Gaming Zone through a network = firewall=20 or proxy
server,
# the following requirements must be met:
# = Your=20 network administrator must configure the firewall or proxy server = to
allow=20 the
# games to pass information through the proxy server or = firewall.
#=20 The following TCP ports on the firewall must be = open:

6667
 28800=20 - 29000

Connection
Initial TCP Connection
47624 = Outbound
47624=20 Inbound
Subsequent TCP Inbound
2300-2400
Subsequent TCP=20 Outbound
2300-2400
Subsequent UDP = Inbound
2300-2400
Subsequent UDP=20 Outbound
2300-2400

############################################= ##########
#
#THIS=20 IS WHAT I HAVE TRIED BUT IT DOES NOT WORK...8-(
# TCP=20 RULES

        ${fwcmd} add = pass tcp=20 from any 6667 to any 6667
        = ${fwcmd}=20 add pass tcp from any 2300-2400 to any =20 2300-2400
        ${fwcmd} add = pass tcp=20 from any 47624 to any = 47624
       =20 ${fwcmd} add pass tcp from any 28800-29000 to any 28800-29000
# TCP=20 RULES

        ${fwcmd} add = pass tcp=20 from any 6667 to any 6667
        = ${fwcmd}=20 add pass tcp from any 2300-2400 to any =20 2300-2400
        ${fwcmd} add = pass tcp=20 from any 47624 to any = 47624
       =20 ${fwcmd} add pass tcp from any 28800-29000 to any 28800-2900

I am = open to=20 any suggestions!!!!!!
and if you need any  more info just ask = and i will=20 try to get it..
Thanks for taking the time to read this=20 8-)

laters
VIPOR
vipor_1@hotmail.com
<= /HTML> ------=_NextPart_000_000D_01C0E21D.391859C0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message