>What rule do I need to add to my rc.firewall to get ICQ on WinXX
>machines to be able to connect the the ICQ servers? I searched
>dejanews
>and can't find anything that works.
Cut directly from the new IPMASQ howto that hopefully will
be finished this weekend. Its also in the TrinityOS doc:
http://www.ecst.csuchico.edu/~dranch/LINUX/TrinityOS.wri
--
With the following configuration, ICQ messaging, URLs, chat, file
transfer, etc ALL work fine!
First, you need to be running a Linux kernel with IPPPORTFW enabled.
Next, you need to add the following lines to your /etc/rc.d/rc.firewall
file. This example assumes that 10.1.2.3 is your external Internet IP
address and your internal MASQed ICQ machine is 192.168.0.10:
The following example is for a 2.0.x kernel:
/usr/local/sbin/ipportfw -A -t10.1.2.3/2000 -R 192.168.0.10/2000
/usr/local/sbin/ipportfw -A -t10.1.2.3/2001 -R 192.168.0.10/2001
/usr/local/sbin/ipportfw -A -t10.1.2.3/2002 -R 192.168.0.10/2002
/usr/local/sbin/ipportfw -A -t10.1.2.3/2003 -R 192.168.0.10/2003
/usr/local/sbin/ipportfw -A -t10.1.2.3/2004 -R 192.168.0.10/2004
/usr/local/sbin/ipportfw -A -t10.1.2.3/2005 -R 192.168.0.10/2005
/usr/local/sbin/ipportfw -A -t10.1.2.3/2006 -R 192.168.0.10/2006
/usr/local/sbin/ipportfw -A -t10.1.2.3/2007 -R 192.168.0.10/2007
/usr/local/sbin/ipportfw -A -t10.1.2.3/2008 -R 192.168.0.10/2008
/usr/local/sbin/ipportfw -A -t10.1.2.3/2009 -R 192.168.0.10/2009
/usr/local/sbin/ipportfw -A -t10.1.2.3/2010 -R 192.168.0.10/2010
/usr/local/sbin/ipportfw -A -t10.1.2.3/2011 -R 192.168.0.10/2011
/usr/local/sbin/ipportfw -A -t10.1.2.3/2012 -R 192.168.0.10/2012
/usr/local/sbin/ipportfw -A -t10.1.2.3/2013 -R 192.168.0.10/2013
/usr/local/sbin/ipportfw -A -t10.1.2.3/2014 -R 192.168.0.10/2014
/usr/local/sbin/ipportfw -A -t10.1.2.3/2015 -R 192.168.0.10/2015
/usr/local/sbin/ipportfw -A -t10.1.2.3/2016 -R 192.168.0.10/2016
/usr/local/sbin/ipportfw -A -t10.1.2.3/2017 -R 192.168.0.10/2017
/usr/local/sbin/ipportfw -A -t10.1.2.3/2018 -R 192.168.0.10/2018
/usr/local/sbin/ipportfw -A -t10.1.2.3/2019 -R 192.168.0.10/2019
/usr/local/sbin/ipportfw -A -t10.1.2.3/2020 -R 192.168.0.10/2020
Once your new rc.firewall is ready, reload the ruleset to make sure things
are ok by simple typing in "/etc/rc.d/rc.firewall". If you get any errors,
you either don't have IPPORTFW support in the kernel or you made a typo
in the rc.firewall file.
Now, in ICQ's Preferences-->Connection, configure it to be "Behind a LAN"
and "Behind a firewall or Proxy". Now, click on "Firewall Settings" and
configure it to be "I don't use a SOCK5 proxy", enable "Firewall session
timeouts" and set it for "30" seconds. Finally, click on Next and
configure ICQ to "Use the following TCP listen ports.." from "2000" to
"2020". Now click done.
Now ICQ will tell you that you have to restart ICQ for the changes to
take effect. To be honest, I had to REBOOT the Windows9x machine to get
things to work right. So.. try it both ways.
--
.----------------------------------------------------------------------------.
| David A. Ranch - Linux/Networking/PC hardware [EMAIL PROTECTED] |
!---- ----!
`----- For more detailed info, see http://www.ecst.csuchico.edu/~dranch -----'
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
