[Ekiga-list] Problem receiving calls... and a solution.
Hi all, First of all, thank you for the nice work bringing Ekiga to the world. It's one of the best softphones out there, and it's free! I've run into a problem trying to set up Ekiga and luckily was able to fix it. As I didn't find a (specific) mention of it in the FAQ and it seems to me to be fairly common, I'm sending it to you in hope of helping someone else. Maybe it should go to the FAQ? Here is the problem: I've got a simple setup, Linux (Fedora 6), no NAT, a direct connection to the net, but I've got a strict firewall (iptables, stateful). Concerning UDP, only ESTABLISHED,RELATED packets are allowed in, all packets are allowed out. Pretty simple, pretty common, I suppose. The problem is, with this setup Ekiga (as configured by the wizard, with STUN) only receives calls just after connecting to ekiga.net (or any other SIP provider). I can make calls, but if I let Ekiga running after some time I can't receive any calls. Here is the cause: Ekiga (probably following SIP) registers with a service using UDP and the service (probably following SIP) expects to find Ekiga at the port it sent the registration (I guess :)). Well, in Linux with IP iptables, this port is only accessible for 180 seconds after the registration. After this time, the firewall will block the packets coming from the SIP service, as it considers the "session" to be over. Here is the solution: There are two ways of coping with that. If you can control your host (root), you can set the UDP iptables timeout to one hour: # echo 3600 > /proc/sys/net/ipv4/netfilter/ip_conntrack_udp_timeout_stream The FAQ hints at this buried in the script of section 6.2, but it points to the wrong variable ip_conntrack_udp_timeout instead of ip_conntrack_udp_timeout_stream. See http://ipsysctl-tutorial.frozentux.net/ipsysctl-tutorial.html#AEN730 for more details. You can use the sysctl utility to set kernel variables more easily. If you don't have control of your host, you can configure each account to refresh the registration every 180 seconds. That's it. Hope I've got it right and that it is useful. :) Abraços, Gustavo ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le jeudi 01 février 2007 à 09:13 -0200, Gustavo Maciel Dias Vieira a écrit : > Hi all, > > First of all, thank you for the nice work bringing Ekiga to the world. > It's one of the best softphones out there, and it's free! > Thanks and sorry for the delay, your email was held in the queue. > I've run into a problem trying to set up Ekiga and luckily was able to > fix it. As I didn't find a (specific) mention of it in the FAQ and it > seems to me to be fairly common, I'm sending it to you in hope of > helping someone else. Maybe it should go to the FAQ? > > Here is the problem: I've got a simple setup, Linux (Fedora 6), no NAT, > a direct connection to the net, but I've got a strict firewall > (iptables, stateful). Concerning UDP, only ESTABLISHED,RELATED packets > are allowed in, all packets are allowed out. Pretty simple, pretty > common, I suppose. The problem is, with this setup Ekiga (as configured > by the wizard, with STUN) only receives calls just after connecting to > ekiga.net (or any other SIP provider). I can make calls, but if I let > Ekiga running after some time I can't receive any calls. > > Here is the cause: Ekiga (probably following SIP) registers with a > service using UDP and the service (probably following SIP) expects to > find Ekiga at the port it sent the registration (I guess :)). Well, in > Linux with IP iptables, this port is only accessible for 180 seconds > after the registration. After this time, the firewall will block the > packets coming from the SIP service, as it considers the "session" to be > over. > > Here is the solution: There are two ways of coping with that. If you can > control your host (root), you can set the UDP iptables timeout to one > hour: > # echo 3600 > /proc/sys/net/ipv4/netfilter/ip_conntrack_udp_timeout_stream > The FAQ hints at this buried in the script of section 6.2, but it points > to the wrong variable ip_conntrack_udp_timeout instead of > ip_conntrack_udp_timeout_stream. See > http://ipsysctl-tutorial.frozentux.net/ipsysctl-tutorial.html#AEN730 for > more details. You can use the sysctl utility to set kernel variables > more easily. If you don't have control of your host, you can configure > each account to refresh the registration every 180 seconds. > > That's it. Hope I've got it right and that it is useful. :) What is the difference between udp_timeout and udp_timeout_stream ? Also, do you know that Ekiga is supposed to send a packet every 30 seconds to the SIP host in order to refresh the binding ? Is it possible for you to sniff the trafic and see why it does not happen ? Thanks ! -- _ Damien Sandras (o- //\Ekiga Softphone : http://www.ekiga.org/ v_/_ NOVACOM : http://www.novacom.be/ FOSDEM : http://www.fosdem.org/ SIP Phone : sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le mardi 13 mars 2007 à 22:47 -0300, Gustavo Maciel Dias Vieira a écrit : > Hi Damien, > > Thanks for your reply, sorry for my delay this time around. :) > > Em Ter, 2007-02-20 às 22:54 +0100, Damien Sandras escreveu: > > > > What is the difference between udp_timeout and udp_timeout_stream ? > > udp_timeout applies to new "connections". udp_timeout_stream applies to > assured "connections". After a number of UDP packets are sent/received a > "connection" is marked as assured. > Thanks for the information ! Yannick, can you add in the wiki section of the FAQ related to routers that on Linux udp_timeout and udp_timeout_stream need to be set to 60 seconds or more ? > > Also, do you know that Ekiga is supposed to send a packet every 30 > > seconds to the SIP host in order to refresh the binding ? > > I did not know that! > > > > > Is it possible for you to sniff the trafic and see why it does not > > happen ? > > Ok, I used tcpdump to monitor all traffic to ekiga.net and there are no > packets sent every 30 seconds. The ip conntrack tables also don't > indicate any activity. > > Is there any option in Ekiga that I could have mistakenly changed? How > do I check if Ekiga is trying to send these packets? > This key : /apps/ekiga/general/nat/binding_timeout -- _ Damien Sandras (o- //\Ekiga Softphone : http://www.ekiga.org/ v_/_ NOVACOM : http://www.novacom.be/ FOSDEM : http://www.fosdem.org/ SIP Phone : sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le mercredi 14 mars 2007 à 10:22 -0300, Gustavo Maciel Dias Vieira a écrit : > Em Qua, 2007-03-14 às 14:13 +0100, Damien Sandras escreveu: > > > Ok, I used tcpdump to monitor all traffic to ekiga.net and there are > > no > > > packets sent every 30 seconds. The ip conntrack tables also don't > > > indicate any activity. > > > > > > Is there any option in Ekiga that I could have mistakenly changed? > > How > > > do I check if Ekiga is trying to send these packets? > > > > > > > This key : > > /apps/ekiga/general/nat/binding_timeout > > It shows the value 60 in my setup. Does it mean a packet would be sent > every 60 seconds? Unfortunately, that is not happening. > > Anything else you want me to check? > Unfortunately not. the packet is sent here, I wonder why it is not sent in your case :-/ -- _ Damien Sandras (o- //\Ekiga Softphone : http://www.ekiga.org/ v_/_ NOVACOM : http://www.novacom.be/ FOSDEM : http://www.fosdem.org/ SIP Phone : sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le mercredi 14 mars 2007 à 10:29 -0300, Gustavo Maciel Dias Vieira a écrit : > Em Qua, 2007-03-14 às 14:24 +0100, Damien Sandras escreveu: > > > > This key : > > > > /apps/ekiga/general/nat/binding_timeout > > > > > > It shows the value 60 in my setup. Does it mean a packet would be > > sent > > > every 60 seconds? Unfortunately, that is not happening. > > > > > > Anything else you want me to check? > > > > > > > Unfortunately not. > > > > the packet is sent here, I wonder why it is not sent in your case :-/ > > Ah, well, at least I know a work around. I'm using 2.0.5 as packaged for > Fedora 6. I will monitor future versions... > > One last thing, the key you mentioned above is in the NAT section of the > configuration. However, my host *isn't* behind NAT, it is behind a > firewall that behaves like NAT except for the address translation magic. > Is it possible that Ekiga detects it is not behind NAT and decides not > to send the packet? Exactly !! That is the reason why it doesn't send it. I had forgotten that detail. -- _ Damien Sandras (o- //\Ekiga Softphone : http://www.ekiga.org/ v_/_ NOVACOM : http://www.novacom.be/ FOSDEM : http://www.fosdem.org/ SIP Phone : sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Hi Damien, Thanks for your reply, sorry for my delay this time around. :) Em Ter, 2007-02-20 às 22:54 +0100, Damien Sandras escreveu: > > What is the difference between udp_timeout and udp_timeout_stream ? udp_timeout applies to new "connections". udp_timeout_stream applies to assured "connections". After a number of UDP packets are sent/received a "connection" is marked as assured. > Also, do you know that Ekiga is supposed to send a packet every 30 > seconds to the SIP host in order to refresh the binding ? I did not know that! > > Is it possible for you to sniff the trafic and see why it does not > happen ? Ok, I used tcpdump to monitor all traffic to ekiga.net and there are no packets sent every 30 seconds. The ip conntrack tables also don't indicate any activity. Is there any option in Ekiga that I could have mistakenly changed? How do I check if Ekiga is trying to send these packets? Abraços, Gustavo ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Em Qua, 2007-03-14 às 14:13 +0100, Damien Sandras escreveu: > > Ok, I used tcpdump to monitor all traffic to ekiga.net and there are > no > > packets sent every 30 seconds. The ip conntrack tables also don't > > indicate any activity. > > > > Is there any option in Ekiga that I could have mistakenly changed? > How > > do I check if Ekiga is trying to send these packets? > > > > This key : > /apps/ekiga/general/nat/binding_timeout It shows the value 60 in my setup. Does it mean a packet would be sent every 60 seconds? Unfortunately, that is not happening. Anything else you want me to check? Abraços, Gustavo ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Em Qua, 2007-03-14 às 14:24 +0100, Damien Sandras escreveu: > > > This key : > > > /apps/ekiga/general/nat/binding_timeout > > > > It shows the value 60 in my setup. Does it mean a packet would be > sent > > every 60 seconds? Unfortunately, that is not happening. > > > > Anything else you want me to check? > > > > Unfortunately not. > > the packet is sent here, I wonder why it is not sent in your case :-/ Ah, well, at least I know a work around. I'm using 2.0.5 as packaged for Fedora 6. I will monitor future versions... One last thing, the key you mentioned above is in the NAT section of the configuration. However, my host *isn't* behind NAT, it is behind a firewall that behaves like NAT except for the address translation magic. Is it possible that Ekiga detects it is not behind NAT and decides not to send the packet? Abraços, Gustavo ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le mercredi 14 mars 2007 à 14:42 +0100, Damien Sandras a écrit : > Le mercredi 14 mars 2007 à 10:29 -0300, Gustavo Maciel Dias Vieira a > écrit : > > Em Qua, 2007-03-14 às 14:24 +0100, Damien Sandras escreveu: > > > > > This key : > > > > > /apps/ekiga/general/nat/binding_timeout > > > > > > > > It shows the value 60 in my setup. Does it mean a packet would be > > > sent > > > > every 60 seconds? Unfortunately, that is not happening. > > > > > > > > Anything else you want me to check? > > > > > > > > > > Unfortunately not. > > > > > > the packet is sent here, I wonder why it is not sent in your case :-/ > > > > Ah, well, at least I know a work around. I'm using 2.0.5 as packaged for > > Fedora 6. I will monitor future versions... > > > > One last thing, the key you mentioned above is in the NAT section of the > > configuration. However, my host *isn't* behind NAT, it is behind a > > firewall that behaves like NAT except for the address translation magic. > > Is it possible that Ekiga detects it is not behind NAT and decides not > > to send the packet? > > Exactly !! > > That is the reason why it doesn't send it. I had forgotten that detail. Damien, should I still add "in the wiki section of the FAQ related to routers that on Linux udp_timeout and udp_timeout_stream need to be set to 60 seconds or more ? " Regards, Yannick > -- > _ Damien Sandras > (o- > //\Ekiga Softphone : http://www.ekiga.org/ > v_/_ NOVACOM : http://www.novacom.be/ > FOSDEM : http://www.fosdem.org/ > SIP Phone : sip:[EMAIL PROTECTED] > > > > ___ > ekiga-list mailing list > ekiga-list@gnome.org > http://mail.gnome.org/mailman/listinfo/ekiga-list -- Me joindre en téléphonie IP / vidéoconférence ? sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le mercredi 14 mars 2007 à 15:17 +0100, yannick a écrit : > Le mercredi 14 mars 2007 à 14:42 +0100, Damien Sandras a écrit : > > Le mercredi 14 mars 2007 à 10:29 -0300, Gustavo Maciel Dias Vieira a > > écrit : > > > Em Qua, 2007-03-14 às 14:24 +0100, Damien Sandras escreveu: > > > > > > This key : > > > > > > /apps/ekiga/general/nat/binding_timeout > > > > > > > > > > It shows the value 60 in my setup. Does it mean a packet would be > > > > sent > > > > > every 60 seconds? Unfortunately, that is not happening. > > > > > > > > > > Anything else you want me to check? > > > > > > > > > > > > > Unfortunately not. > > > > > > > > the packet is sent here, I wonder why it is not sent in your case :-/ > > > > > > Ah, well, at least I know a work around. I'm using 2.0.5 as packaged for > > > Fedora 6. I will monitor future versions... > > > > > > One last thing, the key you mentioned above is in the NAT section of the > > > configuration. However, my host *isn't* behind NAT, it is behind a > > > firewall that behaves like NAT except for the address translation magic. > > > Is it possible that Ekiga detects it is not behind NAT and decides not > > > to send the packet? > > > > Exactly !! > > > > That is the reason why it doesn't send it. I had forgotten that detail. > > Damien, > should I still add "in the wiki section of the FAQ related to routers > that on Linux udp_timeout and udp_timeout_stream need to be set to 60 > seconds or more ? " > Yes, in the NAT section. Thanks ! -- _ Damien Sandras (o- //\Ekiga Softphone : http://www.ekiga.org/ v_/_ NOVACOM : http://www.novacom.be/ FOSDEM : http://www.fosdem.org/ SIP Phone : sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Hi, Added to the wiki: http://wiki.ekiga.org/index.php/Ekiga_behind_a_NAT_router Mostly it's a cut'n paste from Gustavo first mail. I also added this line to the script: http://wiki.ekiga.org/index.php/Ekiga_behind_a_NAT_router#What_iptables_rules_could_I_use_for_GNU.2FLinux.3F echo 3600 > /proc/sys/net/ipv4/netfilter/ip_conntrack_udp_timeout_stream As those king of issues are beyond my scope, can you damien just review it ? Gustavo, as it is your work and I placed it under the GNU Free Documentation License (the wiki license): http://www.gnu.org/copyleft/fdl.html Are you fine with it ? Regards, Yannick Le mercredi 14 mars 2007 à 15:41 +0100, Damien Sandras a écrit : > Le mercredi 14 mars 2007 à 15:17 +0100, yannick a écrit : > > Le mercredi 14 mars 2007 à 14:42 +0100, Damien Sandras a écrit : > > > Le mercredi 14 mars 2007 à 10:29 -0300, Gustavo Maciel Dias Vieira a > > > écrit : > > > > Em Qua, 2007-03-14 às 14:24 +0100, Damien Sandras escreveu: > > > > > > > This key : > > > > > > > /apps/ekiga/general/nat/binding_timeout > > > > > > > > > > > > It shows the value 60 in my setup. Does it mean a packet would be > > > > > sent > > > > > > every 60 seconds? Unfortunately, that is not happening. > > > > > > > > > > > > Anything else you want me to check? > > > > > > > > > > > > > > > > Unfortunately not. > > > > > > > > > > the packet is sent here, I wonder why it is not sent in your case :-/ > > > > > > > > Ah, well, at least I know a work around. I'm using 2.0.5 as packaged for > > > > Fedora 6. I will monitor future versions... > > > > > > > > One last thing, the key you mentioned above is in the NAT section of the > > > > configuration. However, my host *isn't* behind NAT, it is behind a > > > > firewall that behaves like NAT except for the address translation magic. > > > > Is it possible that Ekiga detects it is not behind NAT and decides not > > > > to send the packet? > > > > > > Exactly !! > > > > > > That is the reason why it doesn't send it. I had forgotten that detail. > > > > Damien, > > should I still add "in the wiki section of the FAQ related to routers > > that on Linux udp_timeout and udp_timeout_stream need to be set to 60 > > seconds or more ? " > > > > Yes, in the NAT section. > > Thanks ! > -- > _ Damien Sandras > (o- > //\Ekiga Softphone : http://www.ekiga.org/ > v_/_ NOVACOM : http://www.novacom.be/ > FOSDEM : http://www.fosdem.org/ > SIP Phone : sip:[EMAIL PROTECTED] > > > > ___ > ekiga-list mailing list > ekiga-list@gnome.org > http://mail.gnome.org/mailman/listinfo/ekiga-list -- Me joindre en téléphonie IP / vidéoconférence ? sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le mercredi 14 mars 2007 à 16:06 +0100, yannick a écrit : > Hi, > > Added to the wiki: > http://wiki.ekiga.org/index.php/Ekiga_behind_a_NAT_router > > Mostly it's a cut'n paste from Gustavo first mail. > I also added this line to the script: > http://wiki.ekiga.org/index.php/Ekiga_behind_a_NAT_router#What_iptables_rules_could_I_use_for_GNU.2FLinux.3F > echo 3600 > /proc/sys/net/ipv4/netfilter/ip_conntrack_udp_timeout_stream > > As those king of issues are beyond my scope, can you damien just review > it ? > Add this too : /proc/sys/net/ipv4/netfilter/ip_conntrack_udp_timeout To the "The Solution" part. Thanks for your excellent work ! > Gustavo, as it is your work and I placed it under the GNU Free > Documentation License (the wiki license): > http://www.gnu.org/copyleft/fdl.html > Are you fine with it ? > > Regards, > Yannick > > Le mercredi 14 mars 2007 à 15:41 +0100, Damien Sandras a écrit : > > Le mercredi 14 mars 2007 à 15:17 +0100, yannick a écrit : > > > Le mercredi 14 mars 2007 à 14:42 +0100, Damien Sandras a écrit : > > > > Le mercredi 14 mars 2007 à 10:29 -0300, Gustavo Maciel Dias Vieira a > > > > écrit : > > > > > Em Qua, 2007-03-14 às 14:24 +0100, Damien Sandras escreveu: > > > > > > > > This key : > > > > > > > > /apps/ekiga/general/nat/binding_timeout > > > > > > > > > > > > > > It shows the value 60 in my setup. Does it mean a packet would be > > > > > > sent > > > > > > > every 60 seconds? Unfortunately, that is not happening. > > > > > > > > > > > > > > Anything else you want me to check? > > > > > > > > > > > > > > > > > > > Unfortunately not. > > > > > > > > > > > > the packet is sent here, I wonder why it is not sent in your case > > > > > > :-/ > > > > > > > > > > Ah, well, at least I know a work around. I'm using 2.0.5 as packaged > > > > > for > > > > > Fedora 6. I will monitor future versions... > > > > > > > > > > One last thing, the key you mentioned above is in the NAT section of > > > > > the > > > > > configuration. However, my host *isn't* behind NAT, it is behind a > > > > > firewall that behaves like NAT except for the address translation > > > > > magic. > > > > > Is it possible that Ekiga detects it is not behind NAT and decides not > > > > > to send the packet? > > > > > > > > Exactly !! > > > > > > > > That is the reason why it doesn't send it. I had forgotten that detail. > > > > > > Damien, > > > should I still add "in the wiki section of the FAQ related to routers > > > that on Linux udp_timeout and udp_timeout_stream need to be set to 60 > > > seconds or more ? " > > > > > > > Yes, in the NAT section. > > > > Thanks ! > > -- > > _ Damien Sandras > > (o- > > //\Ekiga Softphone : http://www.ekiga.org/ > > v_/_ NOVACOM : http://www.novacom.be/ > > FOSDEM : http://www.fosdem.org/ > > SIP Phone : sip:[EMAIL PROTECTED] > > > > > > > > ___ > > ekiga-list mailing list > > ekiga-list@gnome.org > > http://mail.gnome.org/mailman/listinfo/ekiga-list > -- > Me joindre en téléphonie IP / vidéoconférence ? > sip:[EMAIL PROTECTED] > > ___ > ekiga-list mailing list > ekiga-list@gnome.org > http://mail.gnome.org/mailman/listinfo/ekiga-list -- _ Damien Sandras (o- //\Ekiga Softphone : http://www.ekiga.org/ v_/_ NOVACOM : http://www.novacom.be/ FOSDEM : http://www.fosdem.org/ SIP Phone : sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
Le mercredi 14 mars 2007 à 10:57 -0300, Gustavo Maciel Dias Vieira a écrit : > Em Qua, 2007-03-14 às 14:42 +0100, Damien Sandras escreveu: > > > One last thing, the key you mentioned above is in the NAT section of > > the > > > configuration. However, my host *isn't* behind NAT, it is behind a > > > firewall that behaves like NAT except for the address translation > > magic. > > > Is it possible that Ekiga detects it is not behind NAT and decides > > not > > > to send the packet? > > > > Exactly !! > > > > That is the reason why it doesn't send it. I had forgotten that > > detail. > > Good! Problem detected. > > I hope I'm not being a pest, but do you plan to do something about it? > > I believe statefull UDP firewalls without NAT are not that common now, > but still many people are behind them. And I'm sure this type of > firewall will become more common as we move to IPv6... > I suppose so, NAT will disappear and such firewalls will appear. > The solution is the same as in the NAT case, because the definition of a > established UDP "session" is the same in the two cases (NAT and > statefull fw). The problem is detecting that you are behind such > firewall, as sending this refresh packets "just in case" seems a bit > silly for the general case. Anyway, at least a note in the FAQ would be > helpful for us behind this type os firewall. > > In any case, thank you for looking at this problem! Please report a bug about it on bugzilla, and I will implement something. Always sending that packet is not so silly. Perhaps I could add an option "NAT Keep Alive" : - Automatic - Forced with a parametrable delay. I can do it very easily. -- _ Damien Sandras (o- //\Ekiga Softphone : http://www.ekiga.org/ v_/_ NOVACOM : http://www.novacom.be/ FOSDEM : http://www.fosdem.org/ SIP Phone : sip:[EMAIL PROTECTED] ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
Re: [Ekiga-list] Problem receiving calls... and a solution.
On Wed, 14 Mar 2007 18:24:38 +0100 Damien Sandras <[EMAIL PROTECTED]> wrote: > > I believe statefull UDP firewalls without NAT are not that common > > now, but still many people are behind them. And I'm sure this type > > of firewall will become more common as we move to IPv6... > > I suppose so, NAT will disappear and such firewalls will appear. NAT is also a security feature, not only a workaround. J. -- dreaming in digital living in realtime thinking in binary talking in IP WELCOME TO OUR WORLD ___ ekiga-list mailing list ekiga-list@gnome.org http://mail.gnome.org/mailman/listinfo/ekiga-list
