/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
LoLoMiN wrote:
> Hello,
>
> i consulted the web site http://fwup.org/ and so on the file
> http://fwup.org/firewall.policy in which i see that Hot Telephone was said to
> be working on a win32 host behind a linux box which is doing IP MASQUERADING :
also note that the readme file says that not all services
have not been tested :(
> i'm inspiring of this section and informations provided on the web site (and
> also information coming from www.hottelephone.com web site) and i wrote the
> following firewall rules for ipchains :
>
> - /sbin/depmod -a
> - /sbin/modprobe ip_masq_ftp
> - /sbin/modprobe ip_masq_raudio
> - /sbin/modprobe ip_masq_irc
> - /sbin/modprobe ip_masq_h323
> - /sbin/modprobe -a ip_masq_irc ports=6665,6666,6667,6668,6669
>
> - /usr/sbin/ipmasqadm portfw -a -P tcp -L $IPEXT 1720 -R 192.168.0.3 1720
> - /usr/sbin/ipmasqadm portfw -a -P udp -L $IPEXT 1717 -R 192.168.0.3 1717
> - /usr/sbin/ipmasqadm portfw -a -P udp -L $IPEXT 1718 -R 192.168.0.3 1718
> - /usr/sbin/ipmasqadm portfw -a -P udp -L $IPEXT 1719 -R 192.168.0.3 1719
> - /usr/sbin/ipmasqadm autofw -A -r tcp 4000 5600 -h 192.168.0.3
>
> # HOT TELEPHONE (port TCP : 1024-4999 , 61000-65096)
> # UDP : 1717-1719 , 4000-5600)
> $IPCHAINS -A input -j ACCEPT -p tcp -s $ANY -d 192.168.0.3 1024:4999
> $IPCHAINS -A input -j ACCEPT -p tcp -s $ANY -d 192.168.0.3 61000:65096
> $IPCHAINS -A input -j ACCEPT -p udp -s $ANY -d 192.168.0.3 1717:1719
> $IPCHAINS -A input -j ACCEPT -p udp -s $ANY -d 192.168.0.3 4000:5600
>
>
> where $IPEXT = External IP of the Internet Connection
> $IPCHAINS = /sbin/ipchains
> $ANY = 0.0.0.0/0
>
> But even with all these rules loaded, it's still impossible for me to have Hot
> Telephone working on the win32 client, when i initiate a call I Have the
> message "Disconnected 8 : 1 ..."
>
>
> my question is so : " Is there anyone who succeed to make Hot Telephone
> working behind a linux box which is doing IPMASQ and on a win32 client please
> ?? and if yes how please ?? i'm presently using a 2.2.18 kernel with
> ip_masq_h323.o module loaded...
> if u need others informations, don't hesitate to ask me on
> [EMAIL PROTECTED] thks a lot
>
> Thank you by advance !
> Bye
don't use autofw. it's unreliable and can crash the kernel.
did you try the mfw variation that i suggested in my
original response to this query? did that work? (presumably
not).
as i said before, if you send me any packet logs that occur
when you try this and tcpdump output for all interfaces on
the masquerading host, i might be able to help you get it
working but without this data it is impossible to know where
it's going wrong.
raf
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
