Koozali.org: home of the SME Server

Legacy Forums => Suggestions => Topic started by: Karl G. O. Hansen on March 21, 2003, 10:08:21 PM

Title: Port Opening
Post by: Karl G. O. Hansen on March 21, 2003, 10:08:21 PM

How do i open port #udp 53 to my dns server on my Mitel server and gateway
it is connectet directly to the internettet

Title: Re: Port Opening
Post by: Bill Talcott on March 21, 2003, 11:05:11 PM

Download the Port Opening contrib from contribs.org. The Port Forwarding contrib will work too, since UDP can't be forwarded and thusly the port is only opened.

Title: Re: Port Opening
Post by: Charlie Brady on March 23, 2003, 12:31:44 AM

Bill Talcott wrote:

> Download the Port Opening contrib from contribs.org. The Port
> Forwarding contrib will work too, since UDP can't be
> forwarded and thusly the port is only opened.

Not true, UDP can in fact be forwarded.

Karl doesn't say why he wants port 53 opened. If it is to provide public DNS (a thing which is discouraged), then there is already a HOWTO available.

Charlie

Title: Re: Port Opening
Post by: Bill Talcott on March 24, 2003, 07:21:25 PM

Charlie Brady wrote:
>
> Bill Talcott wrote:
>
> > Download the Port Opening contrib from contribs.org. The Port
> > Forwarding contrib will work too, since UDP can't be
> > forwarded and thusly the port is only opened.
>
> Not true, UDP can in fact be forwarded.

Someone needs to update the contrib then. Or is this something new in iptables/5.6?

From dmc-mitel-portforwarding-0.0.1-5.noarch.rpm:
"When you create a port forwarding entry, your Mitel Networks server will forward the port to the destination IP address and port you define. Both TCP and UDP protocols may be defined however only TCP protocols forward. UDP protocols do not support forwarding and are simply opened on the firewall for inbound traffic."

Title: Re: Port Opening
Post by: Michael Soulier on March 25, 2003, 03:19:19 PM

Bill Talcott wrote:
>
> Someone needs to update the contrib then. Or is this
> something new in iptables/5.6?

UDP protocol has not changed in some time. It could always be forwarded, and the 2.2 kernel was perfectly capable of forwarding it.

> From dmc-mitel-portforwarding-0.0.1-5.noarch.rpm:
> "When you create a port forwarding entry, your Mitel Networks
> server will forward the port to the destination IP address
> and port you define. Both TCP and UDP protocols may be
> defined however only TCP protocols forward. UDP protocols do
> not support forwarding and are simply opened on the firewall
> for inbound traffic."

As you say, someone needs to update that contrib.

Mike

Title: Re: Port Opening
Post by: Dennis Johansen on April 02, 2003, 12:16:59 AM

I’m trying to set up a gameserver (Quake3Arena).

It runs on port 27960 UDP. How should I open that port?

I’ve installed the port opening contribution from Darrel May but I still can’t connect from the outside?

Any suggestions?


/ Dennis Johansen
P.s. Running SME 5.6 in server/gateway mode.

Title: IP Tables
Post by: Timothy on April 16, 2003, 01:13:32 PM

I'm now using a E-smith V5.6.  My setup is Server and Gateway Setup.

My setup is like this, I have two ip addresses in my network. 192.168.10.0/24 and secondary network which is 192.168.40.0/24.

On my e-smith setup 192.168.10.0/24 is the external and the 192.168.40.0 is my private network.

I want only to allow 192.168.40.10 to 192.168.40.20 to access all services including network resources on 192.168.10.0

While the remaining ip addresses (192.168.40.21 to 54) will only permitted for HTTP, POP3, SMTP and FTP.

For 192.168.10.10 to 192.168.10.15 will be allowed to access the network 192.168.40.0