You already figured out the dcc modprobe ip_masq_irq does that, anyways for the ICQ I figured that one out, for the exact details I'll have to be at home though. It's pretty simple actually, you need to forward a small range of ports to the ICQ host, for instance 62912, 62913, 62914, 62915,62916 & 62917. Then you can setup in your ICQ that it should ONLY use those ports. It's somewhere around the firewall settings. Then your settled :-) I've done this at home and at work (where my boss uses ICQ) it works like a charms (ICQ 2000+) if there are any security related issues with this kind of setup I'd like to hear them (apart from vulnerabilities in ICQ but those are nice too :-)) Regards ----- Original Message ----- From: "Ionut Murgoci" <[EMAIL PROTECTED]> To: "Nicolas Sigal" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Monday, September 10, 2001 5:19 AM Subject: Re: masquerade question. > [snip] > > >anyone knows how to make irc dcc and icq chat/file transfer works, under > >masquerade? > > > >i have only this rule: > > >ipchains -A forward -s 192.168.0.0/24 -d 0/0 -j MASQ > > try this: > ipchains -A forward -s 192.168.0.0/24 -d ! 192.168.0.0/24 -j MASQ > /sbin/ipchains -M -S 7200 10 60 > > modprobe ip_masq_irc ports=6666,6667,6668,6669 > modprobe ip_masq_ftp > > also check ur firewall configuration .. to see if u allow trafic on those > ports. > > > -- > Numai bine, > Ionut. > > Ionut Murgoci > Network & System Engineer > Romania Data Systems - Iasi Branch > Tel: +4 032 218385 Fax: +4 032 260099 >
