From owner-freebsd-questions Tue Feb 13 3: 0:47 2001 Delivered-To: freebsd-questions@freebsd.org Received: from entropy.inserted.net (async2-win-isp-1.nas.one.net.au [61.12.142.3]) by hub.freebsd.org (Postfix) with SMTP id DB66A37B4EC for ; Tue, 13 Feb 2001 03:00:41 -0800 (PST) Received: (qmail 319 invoked from network); 13 Feb 2001 10:37:03 -0000 Received: from fortune.inserted.net (192.168.0.2) by entropy.inserted.net with SMTP; 13 Feb 2001 10:37:03 -0000 Message-Id: <5.0.2.1.2.20010213212256.02230ea8@entropy.inserted.net> X-Sender: steve@inserted.net@entropy.inserted.net X-Mailer: QUALCOMM Windows Eudora Version 5.0.2 Date: Tue, 13 Feb 2001 21:33:46 +1100 To: freebsd-questions@freebsd.org From: Stephen Ware Subject: ipfw and forwarding questions. Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii"; format=flowed Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hola, I'm trying to play an online game (Age of Empires 2) from my windows machine (192.168.0.2), The windows machine is behind a 4.2-Stable (cvsupped as of last week). My external interface is ppp0 (61.12.142.3) and my internal interface is rl0 (192.168.0.1) Age of Empires seems to require a connection from the server to play multiplayer styles, however the port isn't consistent. I''ve recompiled my kernel with options IPFIREWALL_FORWARD and added after reading the ipfw man page, tried this: ipfw fwd 192.168.0.2 log all from 206.47.132.194 to any in recv ppp0 (206.47.132.194 is the machine the server is running on). Is this correct? From /var/log/security, I'm getting: Feb 13 21:21:06 entropy /kernel: ipfw: 900 Forward to 192.168.0.2 TCP 206.47.132.194:4467 61.12.142.3:2357 in via ppp0 Feb 13 21:21:06 entropy /kernel: ipfw: 900 Forward to 192.168.0.2 TCP 206.47.132.194:4462 61.12.142.3:2357 in via ppp0 + more of the same, with different port numbers So to me, it seems to be doing the right thing. From my windows machine, running netstat 4 -a doesn't seem to register any connections when I attempt to connect to the remote server. Other info: I have IPFIREWALL_DEFAULT_TO_ACCECT in my kernel, (usually running with ipfw add 65435 deny log ip from any to any taken out to try and work this.) Can anyone point me in the right direction or tell me if I'm horribly wrong in my setup? I'd be much obliged. Thanks for your time. Regards, Stephen Ware steve@inserted.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message