From owner-freebsd-stable Sat Oct 20 19:10:10 2001 Delivered-To: freebsd-stable@freebsd.org Received: from pi.yip.org (pi.yip.org [199.45.111.121]) by hub.freebsd.org (Postfix) with ESMTP id 850E937B405 for ; Sat, 20 Oct 2001 19:10:01 -0700 (PDT) Received: from localhost (melange@localhost) by pi.yip.org (8.11.1/8.11.1) with ESMTP id f9L28Nj69153; Sat, 20 Oct 2001 22:08:23 -0400 (EDT) (envelope-from melange@yip.org) Date: Sat, 20 Oct 2001 22:08:23 -0400 (EDT) From: Bob K To: Scott Taggart Cc: Kal Torak , freebsd-stable@freebsd.org Subject: Re: ICQ with NAT problems In-Reply-To: <002701c159cc$fcb44e80$0200000a@intranet> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Assuming the information at http://www.icq.com/icqtour/firewall/netadmin.html and http://www.icq.com/icqtour/firewall/#configure is accurate, you need to do the following: - On the box running NAT, you need to start natd with the following flag: redirect_port tcp : where is the machine running icq and is some port between 1024 and 65535. I'd suggest -not- using 1080, 31337, 27374, or 12345 for these, unless you want to show up in script kiddie scans. - On the box running icq, there should be some sort of firewall setup screen. Choose the option, "I have no Socks.x Proxy server but I have a range of listening ports I can use." and insert the value of there. Do note that this will mean that someone attempting to connect to TCP on the firewall will be forwarded to the machine whether it's an ICQ connection or not, and also that this is completely off-topic for -stable - I'm sure Mirabilis has help forums for exactly this sort of question. On Sun, 21 Oct 2001, Scott Taggart wrote: > ICQ works fine with me. I'm running normal ICQ on windows going through a > natd gateway on my FreeBSD 4.4 machine to the internet, I experience no > disconnections whatsoever > > No... file transfers don't seem to work through ICQ over nat but let's face > it.... that isn't really a loss is it ;-) > > Rgds. > Scott Taggart > ----- Original Message ----- > From: "Kal Torak" > To: "FreeBSD Stable" > Sent: Sunday, October 21, 2001 1:17 AM > Subject: ICQ with NAT problems > > > > Hi, > > > > I have noticed that icq wont work correctly through a nat > > gateway (not just freebsd's nat)... There are two major > > problems, you cant send or recive files, and you constantly > > go offline/online about every 5 mins or so... > > > > I was able to solve the file sending problem by redirecting > > a range of ports with nat and configuring icq to use them, > > but the constant disconnecting I have not been able to fix... > > > > Looking through the archives of this list there are a few > > posts on the subject but no real answers, it seems the only > > way around it has been to use a socks proxy, which I really > > dont want to do! > > > > Some people have said that icq uses udp between the server > > and client, and because of the time between the packets the > > socket has been removed form the nat table by the time the > > next one is sent and it doesnt get through causing you to get > > disconnected... I have seen something for linux called icq-masq > > which is a kernel moduel that seems to fix these problems for > > linux's ip masqurading... > > > > Anyway, has anyone solved this problem? or would perhaps be > > interested in fixing it? Anyone have any ideas? > > > > Thanks! > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-stable" in the body of the message > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > -- Bob | We're all wrong. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message