Firewall and Bittorrent

TheWart · Posted: Sat Sep 20, 2003 5:41 am Post subject: Firewall and Bittorrent

Does anyone have any ideas wht I can't connect to anyone or anything with BT?

I have shorewall, with port 6881-6999 open, along with 6969, as that is the one Bittorrent listens on according to the BT faq.

But I still get timeouts when trying to connect to a tracker,

BTW, i am using Shorewall.
_________________
Face it, we are all noobs.

On the box it said it was designed for Win XP or better, so why won't it work with Linux?

TheWart · Posted: Sat Sep 20, 2003 3:00 pm Post subject:

bump

This must be a weird issue.....
_________________
Face it, we are all noobs.

On the box it said it was designed for Win XP or better, so why won't it work with Linux?

think4urs11 · Posted: Sat Sep 20, 2003 3:13 pm Post subject:

Hi!

It's a german site but nevertheless it should be clear what has to be configured.

http://bittorrent-faq.de/#ss2.9

HTH
T.
_________________
Nothing is secure / Security is always a trade-off with usability / Do not assume anything / Trust no-one, nothing / Paranoia is your friend / Think for yourself

TheWart · Posted: Sat Sep 20, 2003 3:21 pm Post subject:

Thanks for the link.

I have all that opened up, but it is still a no go (and yes, I did restart shorewall

)

I guess I could take shorewall off of boot (i,e. have no firewall and see what happens)

UPDATE:

Sure enough, I took off my firewall, and it still timed out to the tracker.

Maybe my school is blocking those ports (although, I don't know why, as they don't bother to block the common fs ones like kazaa etc).
_________________
Face it, we are all noobs.

On the box it said it was designed for Win XP or better, so why won't it work with Linux?

TheWart · Posted: Sat Sep 20, 2003 6:55 pm Post subject:

I am sorry for replying to my own post, but I figured I might as well bump it...

Does anyone know how to tell Bittorrent what ports to use?
I am trying it like this:

funkmankey · Guru Joined: 06 Mar 2003 Posts: 304 Location: CH

if you give it any flags at all, you have to include the responsefile flag that specifies the torrent file, e.g....

TheWart · Posted: Sat Sep 20, 2003 7:53 pm Post subject:

funkmankey · Guru Joined: 06 Mar 2003 Posts: 304 Location: CH

that is mighty bizarre! have you tried checking the first line of the torrent file itself and see what port the tracker is on (not always 6969...)? the download gui will also offer that info under its "details" link.

in the end there is always tcpdump ^_^
_________________
I've got the brain, I'm insane, you can't stop the power

TheWart · Posted: Sun Sep 21, 2003 3:30 am Post subject:

funkmankey · Guru Joined: 06 Mar 2003 Posts: 304 Location: CH

simple test:

TheWart · Posted: Sun Sep 21, 2003 5:57 pm Post subject:

Okay, I ran tcpdump as you indicated, and this was the output:

think4urs11 · Posted: Sun Sep 21, 2003 6:08 pm Post subject:

hmm

not a single packet in you trace is coming FROM the tracker.

Seems to as if either the outgoing traffic is blocked somewhere OR the incoming traffic is blocked somewhere before your eth0.
_________________
Nothing is secure / Security is always a trade-off with usability / Do not assume anything / Trust no-one, nothing / Paranoia is your friend / Think for yourself

TheWart · Posted: Sun Sep 21, 2003 6:12 pm Post subject:

TheWart · Posted: Tue Sep 30, 2003 3:21 pm Post subject:

Well, I did email them, and they said that port 6969 is the port of "a well known trojan," gatecrasher, was what they called it I think.

Soooo, I guess I am out of luck when it comes to bittorrent.

That sucks. Thanks for the help all.
_________________
Face it, we are all noobs.

On the box it said it was designed for Win XP or better, so why won't it work with Linux?

funkmankey · Guru Joined: 06 Mar 2003 Posts: 304 Location: CH

dnno if there is any sort of proxy type thing available for BT?

or you could try to make nice with the people running a particular tracker and ask them to run it on some alternate port instead (e.g. I've seen a lot running on 7979...)

such an annoying thing, 'cos you really only need to get 1 peer from the tracker and then I think that peer can give you other peers/seeds that it knows about even if the tracker goes down.
_________________
I've got the brain, I'm insane, you can't stop the power

Squinky86 · Posted: Thu Oct 02, 2003 4:11 pm Post subject:

I agree- there should be a way to proxy bittorrent, but I haven't found it yet. Heh, the school admins blocked AIM addresses, so I set my home computer up as a proxy that let people connect. I don't know how to get around PORT blocking, though...
_________________
Me

funkmankey · Guru Joined: 06 Mar 2003 Posts: 304 Location: CH

I have to admit that the official windows AIM client is amazing in one respect: when you hit that auto-connect-network-search-button in the config, if even the tiniest hole exists in a firewall it will find it and use it.

good point squinky, a simple ssh port-forward, or even squid is a good solution, if you/friend/family have some remote machine to run it on.
_________________
I've got the brain, I'm insane, you can't stop the power

ry00 · n00b Joined: 26 Jul 2003 Posts: 11 Location: singapore

i used to hav that time out problem with bittorrent from behind my school firewall. but after i specify my port number as the port number that appears from PC's outside the firewall.
e.g, my IP number when i connect into irc.
it finally works.
and another thing, i use bittorrent-theshadow at port 6666.