From owner-freebsd-questions@FreeBSD.ORG  Tue Oct  5 14:24:17 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EB6C416A4DC
	for <freebsd-questions@freebsd.org>;
	Tue,  5 Oct 2004 14:24:17 +0000 (GMT)
Received: from highland.isltd.insignia.com (highland.isltd.insignia.com
	[195.74.141.1])	by mx1.FreeBSD.org (Postfix) with ESMTP id 8B65343D45
	for <freebsd-questions@freebsd.org>;
	Tue,  5 Oct 2004 14:24:16 +0000 (GMT)
	(envelope-from subscriber@insignia.com)
Received: from dailuaine.isltd.insignia.com (dailuaine.isltd.insignia.com
	[172.16.64.11])i95EOEFx000203	for <freebsd-questions@freebsd.org>;
	Tue, 5 Oct 2004 15:24:15 +0100 (BST)
	(envelope-from subscriber@insignia.com)
Received: from speyburn.isltd.insignia.com (speyburn [172.16.64.16])
	i95EOEgF004581	for <freebsd-questions@freebsd.org>;
	Tue, 5 Oct 2004 15:24:14 +0100 (BST)
	(envelope-from subscriber@insignia.com)
From: Jim Hatfield <subscriber@insignia.com>
To: freebsd-questions@freebsd.org
Date: Tue, 05 Oct 2004 15:24:14 +0100
Organization: Insignia Solutions
Message-ID: <n9b5m0pdgm3as090vtimgflvjtvu7krg1p@4ax.com>
References: <3203DF3DDE57D411AFF4009027B8C3675FCF17@exchange-uk.isltd.insignia.com>
In-Reply-To: <3203DF3DDE57D411AFF4009027B8C3675FCF17@exchange-uk.isltd.insignia.com>
X-Mailer: Forte Agent 2.0/32.640
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
X-Scanned-By: MIMEDefang 2.44
Subject: Re: ipnat and "udp consistent translation" (Skype related)
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Oct 2004 14:24:18 -0000

On Wed, 29 Sep 2004 13:45:40 +0100, in local.freebsd.questions you
wrote:

>Using Skype on a machine behind a FreeBSD 4.x firewall using
>ipf/ipnat, if I try a file transfer I get "your connection is relayed"
>which suggests that there are problems using "UDP hole punching" to
>get a direct connection. The Skype help page sends you to:
>
>http://bgp.lcs.mit.edu/~dga/view.cgi
>
>where ipnat gets a "no" in the "udp consistent translation" column.

I think this info must be out of date, and that ipnat really does
do "UDP consistent translation". This is a bit of output from=20
ipnat -l:

>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [159.148.187.95 =
27452]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [70.48.222.77 =
51689]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [80.131.15.67 =
24122]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [67.8.167.204 =
52284]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [24.201.154.49 =
57657]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [82.36.75.76 =
41765]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [139.91.190.109 =
4709]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [65.93.139.84 =
56670]
>MAP 172.16.64.16    13432 <- -> 195.74.141.61   5132  [210.221.94.233 =
5387]

The machine running Skype is 172.16.64.16 and Skype's
Options->Connections property page shows 13432 as the port number.
I presume 5132 is the translated port number. Looks pretty consistent
to me. So it was a red herring and I'll have to look elsewhere.

jim