Topic: Messenger - Will it Ever Work?

[Michael]

I'm trying to get Messenger to be able to Send files and all the rest.
I know alot of people post messages here about this same issue.
I've gone through and read all I can, but I still can't seem to get it to work.

I've tried downloading ip_masq_mms.o from http://www.quarkav.com/SmoothWallGPL/SWG_AppCfg_1.1.php

Following instructions from both the above site and posts
http://forums.contribs.org/index.php?topic=19927.msg78386#msg78386

And this handy bit of info about opening ports:
http://forums.contribs.org/index.php?topic=19927.msg78386#msg78386

But I'm still stuck.
I am currently running e-smith 5.1.2 but will shortly be upgrading to 5.5

Has anyone out there actually got Messenger sending files/web cam/remote desktop etc working ?
If so, whats the best way?

[Bob]

I would also like to get it working.
If anyone has a solution please let us know.

Sorry can't help Michael but I give you some moral support.

Thanks.

[Nathan Fowler]

Try http://www.tsmservices.com/masq

More specifically:
http://www.tsmservices.com/masq/cfm/detail.cfm?AppID=244
http://support.microsoft.com/default.aspx?scid=kb;EN-US;q158623

It's possible to use ipmasqadm autofw to fullfill the port forwarding requirements.

[Bill Talcott]

The problem is the way IM (and other) programs are designed. File transfers embed the user's IP address into the packet, so the other end receives your PC's private IP address, rather than the public IP address that their client could reach. Any solution out there is really a bit of a hack to allow something that was never envisioned...

ReAIM is an AIM/MSN proxy that modifies the IP address so the other end connects back to your public IP, and ReAIM passes it back to your PC.

Check out upnpd too, a partial implementation of MS' UPnP. UPnP allows PCs to dynamically change the routing configuration though, so it's a bit of security issue (especially once trojans and viruses start doing this). Supposedly there's a new spec for UPnP coming out that provides more security...

pseudoicsd too, which I think upnpd is based on.

Most of those are designed for iptables though, which means they won't work out of the box with SME =< 5.5. With ICQ, you can specify which ports the client uses for that stuff. You can forward a range of ports to each user, and specify in the client to use that range... That's basically a static version of what UPnP does dynamically.

[Nathan Fowler]

As promised, here are the ipmasqadm autofw rules for MSN Messenger.  These should be added to /etc/rc.d/rc.local

#IP Autofw rules for MSN Messenger/MSN Gaming Zone/DirectPlay Games
/usr/sbin/ipmasqadm autofw -A -r tcp 29900 29901 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r tcp 28800 28912 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r tcp 6890 6901 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r tcp 47624 47624 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r tcp 2300 2400 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r tcp 1863 1863 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r tcp 6667 6667 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r tcp 3783 3783 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r udp 2300 2400 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r udp 1863 1863 -h 10.0.0.10
/usr/sbin/ipmasqadm autofw -A -r udp 5004 65535 -h 10.0.0.10

Where 10.0.0.10 is the IP of the internal machine wanting to use the full features of MSN Messenger

I don't use these services so I haven't tested it, it's been at least a year, but I do know that ipmasqadm autofw is often necessary to extend services to computers for certain applications.

Keep me updated,
Nathan

[Nathan Fowler]

You may wish to also add:
/usr/sbin/ipmasqadm autofw -A -v -r tcp 1863 1863 -h 192.168.1.2
/usr/sbin/ipmasqadm autofw  -A -v -r tcp 6890 6901 -h 192.168.1.2
/usr/sbin/ipmasqadm autofw  -A -v -r udp 6901 6901 -h 192.168.1.2

Where 192.168.1.2 is the Internal IP of the machine needing MSN Messenger access.