Topic: firewall or brickwall

[oxmyx]

Hi, new here and new to SME. great to have this board!  


  Firewall rules
On a windows machine in my network
The problem I am dealing with thus far is a NAT problem for Utorrent client. Cant get port forwarding. As far as I know I only need to open one port and thus far have been unsucessful.



I find this server to be extremely security concious to the point that it is unmanageable for me; at least i cannot see anywhere in the http server-manager where I can reasonably set explicit setting, nor is there a place to turn it off~!

If someone could just least put me in the right direction, please.
~~>Command line is ok, but I am not fluent there, so please give exact code if necessary -BUT is there not a GUI interface for the firewall settings, besides the simplistitc plain port forwarding in the server-manager. (which makes no sense to me)
Thanks for reading ......  

[william_syd]

Use Port Forwarding in Server-manager...

Protocol TCP
Source Ports 6881-6889
Destination Host ip Address (IP of xp machine)
Destination Ports <blank>


Maybe a range of ports.. 6881-6889 (TCP) will work better.

What port were you using ?

[oxmyx]

did as you had suggested, only the port I use (only need a single one according to utorrent) is 45377.
I am still unconnectable. port is closed according to test.
Windows XP firewall is turned off.

[william_syd]

Code: [Select]

iptables -L |grep 45377

[oxmyx]

thanks william,
That confirms that I had set up the parameters in server-manager correclly. I was not sure. Testing port through utorrent I get error, port appears to be closed; and at a torrent site I am considered unconnectable.  Dont know what is going on....    Bittorent client seems to be working fine, both directions.  

[william_syd]

thanks william,
That confirms that I had set up the parameters in server-manager correclly. I was not sure. Testing port through utorrent I get error, port appears to be closed; and at a torrent site I am considered unconnectable.  Dont know what is going on....    Bittorent client seems to be working fine, both directions.  

Just tried utorrent on a xp machine and it works with a single port. However I use a smoothwall firewall so these results don't mean much to you.

In a slightly different direction, why not run the BT client on your SME. I gather being in server-gateway mode it is on 24/7.

Have a look at TorrentFlux. It's already setup to go onto a SMEServer. You just login via a computer on the lan, setup you torrents, logout and when you come back your files are there.

TorrentFlux thread.

[oxmyx]

Hey!  now thats the way to  go, I just hope it is configurable and "smooth" as utorrent......   I used to have Azureus, and it was a resource hog and not as easy to config.

It seems alot of people are switching to utorrent for good reason.
I am, however willing to try yout suggestion...

What would be nice, since I'd like to give it a go, (learning linux) is if there is a way to 'aptget' on the server and set it up that way.....

[william_syd]

At the command line..

Code: [Select]

db yum_repositories set dungog repository \
 BaseURL http://sme.dungog.net/packages/smeserver/7.0/i386/dungog/ \
 EnableGroups yes \
 GPGCheck no \
 Name 'SME Server 7 - dungog' \
 Visible no \
 status disabled


Code: [Select]

/sbin/e-smith/expand-template /etc/yum.conf

Code: [Select]

yum --enablerepo=dungog smeserver-torrentflux

Code: [Select]

cd /tmp

Code: [Select]

wget http://www.vhconsult.com/download/sme70/phpmyadmin-multiuser/smeserver-phpmyadmin-multiuser-2.9.1-1.noarch.rpm

Code: [Select]

yum localinstall smeserver-phpmyadmin-multiuser-2.9.1-1.noarch.rpm


You now have torrentflux at
http://servername/torrent
and phpmyadmin at
https://servername/myadmin
Username/password for both is admin/admin

However, read here on what you may have todo to get torrenflux working.

[oxmyx]

I am overwelmed by the extent  with which you are willing to go, to solve my problems!  
Thanks William
I will have it a go, I like the fact that you can asign the config for a package installed, to https services (have I said this right?)

 

Cheers, oxmyx
update  hmmmmm   dont know what i did,  lol

~~>at end of your final command line  nothing happened,  tried several things, it appeared to me i was in yum or whatever you had me write to script.  Hit up arrow saw some options, typed ".sbash" (i think)   and **poof  things started popping.  seems to have worked, however there is no logging into  http://servername/torrent, (page not found)  BUT  I do have https://servername/myadmin  (was that there before?)

do you mind explaining what each box of code was essentially doing, and whether I was supposed to change directories.( which did not occur)

methinks I need to do some reading....
 

[william_syd]

It's set for cut 'n paste.

Paste each code box into your shell.

The first does get pasted in its entirety, not line by line.

at end of your final command line

Which one in particular?

[william_syd]

6 code boxes..

1.  Set up dungog yum repository to allow easy d/l and install with yum.

2.  Expand the yum configuration file so it will contain the dungog repository.

3.  Use yum to d/l and install torrentflux and it's dependencies from dungog.
Original had an error. Try..

Code: [Select]

yum --enablerepo=dungog install smeserver-torrentflux

4.  Change to the tmp directory.

5.  Download phpmyadmin rpm (no repository for this).

6.  Use yum to install the phpmyadmin rpm.

[oxmyx]

Yikes!!  I gooffed then........... I was viewing your commands on my XP machine while logged into the SMEserver command line as root, entered each line separately.    what I meant by the end line was the last line of code you presented:

Code: [Select]

yum localinstall smeserver-phpmyadmin-multiuser-2.9.1-1.noarch.rpm

[oxmyx]

phpadmin seems to be installed while there was an error installing torrent

you said cut and paste.  can I do the entire thing over, without mucking things up??  makes more sense now....

to cut and paste, i assume i can login to server by this winxp machine allowing cut and paste via http services, How do i do that? -- remeber i am new at this Smeserver..........


thanks again,  and regards, Barry (oxmyx)

[william_syd]

to cut and paste, i assume i can login to server by this winxp machine allowing cut and paste via http services

No.

As a XP user, two programs that will become your best friends are PuTTy and WinSCP.

Putty
WinSCP

Putty will allow you to remotely connect and WinSCP will allow you to copy files between XP and SME.

[azche24]

Hi,

did as you had suggested, only the port I use (only need a single one according to utorrent) is 45377.
I am still unconnectable. port is closed according to test.
Windows XP firewall is turned off.

uTorrent works like a charm with SME. Open UDP and TCP Ports on the Port-Forwarding Panel ("both"). Just pick one Port, e.g. 45377.

Pick that port in uTorrent. Checkbox "always choose random port" must of course be off!

Check your local IP at the Workstation. Must be similar to the one in the server panel. And there you go. Works fine here with SME 7.1 and WinXP-WS. uTorrent is much more convenient for single BT-Downloads and notsoheavy use compared to torrentflux. Torrentflux wins with long-time seeds (e.g. with a linux distro   ).