alexbuell
Guru
Joined: 18 Jul 2002
Posts: 498
Location: "Hemp"shire, UK
|
 Posted: Thu Jun 12, 2003 6:48 am Post subject: Firewall & mirrorselect |
 |
|
Right, after trial and error, I've devised a firewall rule to allow mirrorselect to run on the firewall itself.
In fwbuilder, just create an UDP object, and assign it the destination port range between 33435 to 33690. Add this object to the global policy, as follow: source=firewall object, destination=any, service=UDP object, action=accept, time=any.
That's it.
For those of you who prefer to be slightly more anal, here's a rule for use with IPTABLES:
$IPTABLES -A INPUT -p udp -s 192.168.0.1 --destination-port 33435:33690 -m state --state NEW -j ACCEPT
$IPTABLES -A OUTPUT -p udp --destination-port 33435:33690 -m state --state NEW -j ACCEPT
If you find this useful, let me know.
_________________
Cheers,
Alex.
Linux - the best text adventure game ever. |
|
Networking & Security
