Christ Schlacta wrote: > I have entries in my tcrules file like the following.. > > 1:F 10.0.0.0/24 0.0.0.0/0 tcp 4500 # Ragnarok > 1:F 0.0.0.0/0 10.0.0.0/24 tcp - 4500 > 1:F 10.0.0.0/24 0.0.0.0/0 udp 4500 > 1:F 0.0.0.0/0 10.0.0.0/24 udp - 4500 > 1:F 10.0.0.0/24 0.0.0.0/0 tcp 6900 # Ragnarok > 1:F 0.0.0.0/0 10.0.0.0/24 tcp - 6900 > 1:F 10.0.0.0/24 0.0.0.0/0 udp 6900 > 1:F 0.0.0.0/0 10.0.0.0/24 udp - 6900 > ... > > also, I'm only shaping outbound traffic. > > here are my questions: > > 1) are the pairs of rules for the tcp source/destination pairs > necessary, or will one pair work? (...tcp 4500/...tcp - 4500)
We can't answer that without knowing how the game works. The 'Important' note at http://www.shorewall.net/traffic_shaping.htm#tcrules explains how to tell which rules are required but, in general, you should only need one rule or the other. I suggest that you: a) Play the game b) As root, type 'shorewall show mangle' c) See which rules are actually used (non-zero packet count). > > 2) can I use one rule for tcp,udp or do I need separate rules for both. You need separate rules -- however, most games don't use TCP. I suggest that you: a) Play the game b) As root, type 'shorewall show mangle' c) Look at the TCP rules and see if there is a non-zero packet count. > > 3) can I use one rule per game and have multiple ports specified, or > will that yield unpredictable results? (ie: tcp 4500,6900) > 'man shorewall-tcrules'. You may specify a port list in tcrules entries. Port lists are described at http://www.shorewall.net/configuration_file_basics.htm#Portlists -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
