Re: ICQ - IPFW

2009-06-05 Thread Ivailo Tanusheff 
Hi,

Generally you have 2 options:
1. To use ICQ over HTTPS connection, which means you should use Proxy 
server or permit https traffic out of your firewall/nat.
2. To use it directly. As you may use dynamic NAT, i.e. there will be not 
possible to have incomming connection on port 4000 and it will not harm 
your network. 

Regards,

Ivailo Tanusheff
Deputy Head of IT Department
ProCredit Bank (Bulgaria) AD




Roy Stuivenberg  
Sent by: owner-freebsd-questi...@freebsd.org
05.06.2009 11:42

To
freebsd-questions@freebsd.org
cc

Subject
ICQ - IPFW






Hello,

I want to start using ICQ (never did before).
The question is, I'm looking for a rule in my IPFW script.
Running 7.2 stable - ipfw configured in the kernel without nat.
Because after some googl'in, i read it's dangerous to just open port
4000 udp.
Any suggestions ?

Regards,

Roy.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to 
"freebsd-questions-unsubscr...@freebsd.org"

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

Re: ICQ - IPFW

2009-06-05 Thread Wojciech Puchar 

The question is, I'm looking for a rule in my IPFW script.
Running 7.2 stable - ipfw configured in the kernel without nat.
Because after some googl'in, i read it's dangerous to just open port
4000 udp.

dangerous because of?

are you running any insecure service on port 4000 udp?

Of course ICQ may be dangerous by itself (i don't know), but as you 
decided to use it then it's not in question.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"

ICQ - IPFW

2009-06-05 Thread Roy Stuivenberg 
Hello,

I want to start using ICQ (never did before).
The question is, I'm looking for a rule in my IPFW script.
Running 7.2 stable - ipfw configured in the kernel without nat.
Because after some googl'in, i read it's dangerous to just open port
4000 udp.
Any suggestions ?

Regards,

Roy.

___
freebsd-questions@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "freebsd-questions-unsubscr...@freebsd.org"