Hmm, still hadn't received a reply through a mailing list, so I'm answering by looking at the archive.
Of course, all outgoing ports are open for an IP address that Freenet is bound to. The problem is that Freenet seems to listen for _incoming_ connections on absolutely random ports. I recall reading somewhere that this is a feature -Fred contacts another Freenet node with request for data then drops TCP connection and waits for incoming one from that node, so as to conserve TCP connections during long data searches and limit amount of traffic and resources required for maintenance of "idle" connections. This seems wise, but only in case if a single port (or a known range of ports) is used to handle such incoming connections. Basic security dictates that _all_ ports which aren't in definite use should be closed, and if this rule can't be followed with current Freenet operation, I'm afraid it could be a real security problem for all more or less secure environments. That's why I've asked if a knows range of ports exists for Freenet. I know Java a little bit, but I don't think I'll brave the code myself to find out exact port ranges (or if they're defined at all). If they aren't defined, maybe it would be possible to consider to make such an option? With best regards, Victor Denisov. _______________________________________________ support mailing list [EMAIL PROTECTED] http://hawk.freenetproject.org/cgi-bin/mailman/listinfo/support
