a reply to :From: Goran Thyni <[EMAIL PROTECTED]>On Sat, Jan 05, 2002 at 02:38:17PM +0100, Maarten Geurts wrote:
> -Does any node expect to be connectable to any node, or just a n number > of nodes it found during the discovery of other nodes. - Any node if possible. please explain "if possible". =20 > The problem with (NAT) firewalls or http proxy=B4s the outside is not > allowed to connect to the inside. -If the node is just for outgoing it does not matter -other then you node-adress is spread a bit and could get -added to other nodes seed cache. It will timeout eventually. Ok, I want to solve this with an other (an desgin of) transport type. "proxy/firewall.". best thing would be if i only have to change The connecting node and not do anything of tunneling. However in the protocol there has something to be changed that only the firewalled node can initiate the connection. Timing out should be prevented since we know from the start it is firewalled and it makes no sence to try a conventional connect to this node if it has a non routable adress (10.* /192.168.*) -To be a full member you need some kind of forwarding from a -host with a public IP. -* set the public IP in your freenet.conf -* put an IP relay in you firewall/gateway, same port number - on private and public interface. This is exactly what is not possible in a lot of environments: -big companies (with FAST internet net connections) -firewalled countries, china i.e. >=20 > Also is there a thing in freenet to find near nodes? nodes behind a NAT > firewall could connect freely, but to the outside it would look like > they have the same ip on a different port. -This is one way to go: -* IPv6 addresses for NATed LANs -* IPv6 support in freenet -* IPv6 to IPv4 gateway -mucho work but doable. Ok, i have to find out how this ip6 things works. I will try google for this. -Another way is to build a translating proxy function, -either in fred or as a seperate service -combined with a smart tunneling connectionmanager in fred. I think the tunneling function should be a part of the final protocol. -happy hacking thx so far. _______________________________________________ freenet-tech mailing list [EMAIL PROTECTED] http://lists.freenetproject.org/mailman/listinfo/tech
