Mike asked me to repost this to leaf-devel as well.
I'll also introduce myself a bit more.
I'm an ex-router software developer (if you're desperately interested, google me) who really doesn't want to spend his retirement working on software routers, but hates the state of the art in consumer grade routers you can buy off the shelf (if they just hand dnsmasq and support for multiple-ip-addresses when NATing, I wouldn't be here at all).
I feel like a crack whore (no offense to crack whores, since this is even lower than that...) for even considering turning on UPnP, much less porting it over to uClibc, but I hate than static configurations for hosts. We shouldn't ever have to think about IP address allocation in this day and age, and the thought of putting in static DNAT rules so that I can download stuff with bittorrent was making me unhappy.
Other than that, well, here's a port of UPnP IGD services for Bering-uClibc. I've tried to make integration with Shorewall as simple as possible, if you have any questions, I'll try to answer them.
-------- Original Message -------- Subject: [leaf-user] ANN: UPnP support for Bering-uClibc Date: Wed, 6 Apr 2005 09:24:21 -0700 From: Paul Traina <[EMAIL PROTECTED]> To: leaf-user@lists.sourceforge.net
Hi folks,
I just wanted to introduce myself and let people know that I've uploaded Universal Plug-N-Play Internet Gateway Device support for Bering uClibc. This is a port of the project at linux-igd.sourceforge.net with some help for integrating with Shorewall.
UPnP IGD services provide firewall and NAT traversal support for applications that need bidirectional connection establishment (e.g. peer-to-peer applications like audio & video chatting with most IM programs, or bittorrent/gnutella type programs).
Documentation on how to install and use should be available in the Bering uClibc users guide.
Two warnings: 1) This implementation supports one upstream/external interface and one "local" interface. You can have more interfaces on your router but only one will listen to UPnP control points (clients) and only one gets firewall/NAT traversal rules.
2) Any time you allow hosts to automatically add rules to your firewall configuration, you're potentially asking for a security issue. Please take care to trust all the hosts on your internal interface, or create some policy in front of the UPnP auto-generated rules to disallow any unacceptable behavior. See the documentation in the Bering uClibc users guide for more detail.
Installation support, bug reports, et al should come to me and please cc the leaf-user mailing list.
Paul
------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click ------------------------------------------------------------------------ leaf-user mailing list: leaf-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
------------------------------------------------------- SF email is sponsored by - The IT Product Guide Read honest & candid reviews on hundreds of IT Products from real users. Discover which products truly live up to the hype. Start reading now. http://ads.osdn.com/?ad_id=6595&alloc_id=14396&op=click
_______________________________________________ leaf-devel mailing list leaf-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/leaf-devel
