|
I haven’t seen this, but also don’t
know how it would work. MSN encapsulates
the local ip of the machine behind the firewall in the data packet. And especially if this ip address is in the
private ip range, iptables isn’t going to be able to handle it with out a
packet mangling module. Because the
machine outside the firewall is going to try to connect to the ip address that
was in the packet, not the source ip of the packet it came in on. What you need is http://linux-igd.sourceforge.net. Give that a try, don’t mean to plug
other software on this list, but it is related, and as of yet this is the only
clean way to do it. Glover George Systems/Networks
Administrator Gulf Sales & Supply,
Inc. (228)-762-0268 -----Original Message----- Hi, I read some document about
allowing MSN voice using Iptables and setup the following commented ruleset in
my firewall rules startup file. I did it manually too but didn't help. Could you please take a look
at the ruleset below and advice me the correct order OR ruleset to allow MSN
voice chat ? I would really appreciate
your reply. Thanks $EXTIF=eth0=12.12.12.12
(Public IP) # echo " FWD:
Allow all connections OUT and only existing and related ones IN"
#echo " Allow MSN
Messenger connection " echo "
Enabling SNAT (MASQUERADE) functionality on $EXTIF" echo -e
"\nrc.firewall-2.4 v$FWVER done.\n" |
Title: MSN v/s Iptables !
- MSN v/s Iptables ! Rajeev Jain
- Glover George
