I've found exactly that several times, and failed to find any real guidance
from the ICQ web site (not surprisingly perhaps).
The ICQ client opens random ports when it starts up (and increments the port
numbers for a while if the initial connection fails). If you find an
acceptable solution I'd be interested to hear it, I've ended up by opening
all access to destination port 4000 in places where ICQ is a *must*, but
it's hardly a good solution.
Paul
> > Hi,
> > Has anyone had any experience configuring ICQ with the
> > Firebox II? I've
> > opened up UDP port 4000 and TCP port 2109, but we are still
> > having problems
> > connecting the ICQ client.
> >
> >
> That's a known problem. It works sometimes. The problem is that the ICQ
> client uses dynamic ports and the FW blocks those ports.
> For what security concerns, it's not such a good idea to open those ports,
> but that's your decision.
>
> Erwin
>
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
