LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page firewall and p2p
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 09-05-2004, 08:08 AM   #1
lynxgogo
Member
 
Registered: Jul 2003
Location: The Netherlands
Distribution: Linux SuSE 9.3 Pro 64-bit
Posts: 58

Rep: Reputation: 15
Exclamation firewall and p2p

Dear linux friends,

I have got the following problem. I got my pc's (working with suse 9.1) connected to a router and the router (Hawkings) has an build in firewall. I tried to make an connecting to the web with GiFT and later KMLDonkey but it seems they are being blocked.
I have got the following questions:
1) how do i make a p2p connection through the firewall
2) When i make the connection with one pc is there than a vulnerability to the other pc's that are also hang up to the router


Thanx

greeting
Marcel
 
Old 09-05-2004, 09:38 AM   #2
Andrew Benton
Senior Member
 
Registered: Aug 2003
Location: Birkenhead/Britain
Distribution: Linux From Scratch
Posts: 2,073

Rep: Reputation: 64
I can't talk about packets being forwarded through a router as I have a direct connection to the web. Also, I use Gnutella, not FT or MLDonkey so the specifics will be different for those protocols, you'll need to use Google. I can tell you that these Firewall rules work for me

#!/bin/bash
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -j ACCEPT
iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -p tcp --dport 17921 -j ACCEPT
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT DROP

The main one is "iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT" - this allows anything through that is related to any packet that was sent from this machine. That one rule does most of the work, however, no-one would be able to download from me without the rule "iptables -A INPUT -p tcp --dport 25611 -j ACCEPT" this opens a port that I can set Gtk-Gnutella to listen to. That way people can send requests for the files I share.

A quick look at Google found this which may be more relevent to MLDonkey through a router
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Encore Router Firewall Blocks P2P rickh Linux - Hardware 0 05-02-2005 12:14 AM
firewall and p2p connections lynxgogo Linux - Security 1 09-06-2004 04:44 PM
Firewall Access P2P inescapeableus Linux - Networking 2 08-30-2004 12:41 AM
p2p firewall issue rickh Fedora 3 06-08-2004 09:48 PM
P2P behind Linux firewall techguy2 Linux - Networking 6 03-03-2003 10:56 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 03:34 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration