On 2 Dec, James Newburrie wrote: > Hello All, > I have a bit of a problem and I am not sure how to go about fixing it. As it > goes Telstra Bigpond Advance cable sends a heart beat on port 5050, it is a > UDP packet, and the built in iptables under mandrake don't let this through, > so my connection drops in a most regular fashion. I read the documentation > but I still don't know how to open port 5050 in the IP Tables.
Hi! I have this line in my iptables init script (don't know where that is for you on mandrake but it's in /etc/init.d/ for me on debian). $IPTABLES -A INPUT -i eth1 -p udp --dport 5050 -m state --state NEW -j ACCEPT where $IPTABLES is the path to iptables, eth1 is my telstra-cable connected eth card. Just to tell you what it does, it ACCEPTs the input from eth1 if it's a udp packet on port 5050 with the state of NEW :) You'll also want to put this line in your bpalogin.conf (most probably in /etc ): localport 5050 (default behaviour for bpalogin is to select a random unprivelaged port unless you tell it not to) > > Another interesting thing is that ICMP packets are completely blocked from > the outside world. And no matter how many times I go into linuxconf and tell > the machine to allow ping and tracert requests, it resets itself back to > ignoring them. This wrecks havock when I try LANing it (Because samba shares > are not visable). Hmm, make sure the lines to let icmp through are in your iptables script :) I don't use linuxconf but I when I tried it a while ago it didn't do what I would tell it to... that may have changed but then again maybe not. The ways to let in icmp packets are usually in fairly standard iptables howtos :) Hope that helps. Catie -- So when the Shredder kidnaps sombody because they know the lady who saw the turtles who talked to the rat who was owned by the guy who dated the girl who lived in the house that was built by the cat who ate the rat who sat on the mat that was made out of the same material that the hat that Shredder wore way back in the day where he'd spend all night long disco dancing, he's either crazy or he's Canadian, he's not Canadian so that narrows it down. http://members.aol.com/TheGriffon/MORAL.html --- http://www.liedra.net -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
