From owner-freebsd-stable Wed Apr 25 11:56:15 2001 Delivered-To: freebsd-stable@freebsd.org Received: from snafu.adept.org (adsl-63-201-63-44.dsl.snfc21.pacbell.net [63.201.63.44]) by hub.freebsd.org (Postfix) with ESMTP id E15A037B424 for ; Wed, 25 Apr 2001 11:56:11 -0700 (PDT) (envelope-from mike@adept.org) Received: by snafu.adept.org (Postfix, from userid 1000) id 87F519EE06; Wed, 25 Apr 2001 11:54:43 -0700 (PDT) Received: from localhost (localhost [127.0.0.1]) by snafu.adept.org (Postfix) with ESMTP id 7C9449B00A; Wed, 25 Apr 2001 11:54:43 -0700 (PDT) Date: Wed, 25 Apr 2001 11:54:43 -0700 (PDT) From: Mike Hoskins To: Jamie Heckford Cc: Brent , freebsd-stable@freebsd.org Subject: Re: ipfw and quake games In-Reply-To: <20010425151608.W31916@storm.psi-domain.co.uk> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Assuming clients on the internal network initiate all conversations, a stateful rule chain would fix this... ipfw allow ip from ${oip} to any keep-state out ipfw(8) has useful info on keep-state. Later, -Mike On Wed, 25 Apr 2001, Jamie Heckford wrote: > Your best bet would probably be to reconfigure your > firewall so that connections initated by yourself are > allowed back and forth... similar to what NATd does. > > Someone refresh my memory on the rule / command... > > Jamie > > On 2001.04.22 00:56 Brent wrote: > > I have a 4.1 FBSD running NAT & IPFW acting as a gateway machine for my > > internal network...i have the kernel to deny by default..all seems to be > > working good...ive opened up what ports i need....although i cant seem > > to > > get quake ports to open ..the clients are using gamespy ..im not sure if > > it > > uses a particular port...but q2 & q3 i think use udp 27910 and 27960 > > ..any > > help would be appreciated...or howto's ya might be able to toss my way > > TIA > > > > Brent > > > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-stable" in the body of the message > > > > > -- > Jamie Heckford > Network Operations Manager > Psi-Domain - Innovative Linux Solutions. Ask Us How. > > FreeBSD - The power to serve > > Join our mailing list and stay informed by emailing > majordomo@psi-domain.co.uk with the line: > subscribe collective > > ===================================== > email: heckfordj@psi-domain.co.uk > web: http://www.psi-domain.co.uk/ > > tel: +44 (0)1737 789 246 > fax: +44 (0)1737 789 245 > mobile: +44 (0)7866 724 224 > > ===================================== > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message