MSN Messenger + Iptables
Hi everyone,
I´m own a LAN with a RH 7.1 (IPChains Firewall and mailserver), with one public IP adress, and private IPs assigned to the internal PCs. (172.16.15.*) I´m tryng to configure MSN Messenger, it´s run very well trough Squid or ip-masquerade for text interchanges, but don´t very well to send or receive files or audio/video. I´m searched the web and the conclusion is that the problem is due to a native limitation of the MSN protocol. Now, we find a ip_masq_mms module at http://home.tig-grr.com/mmsmasq.tar.gz , so this URL does not contain the file. I have researched the web to find the file, but... not exist. Someone of us have some idea of where is the file ??? Regards. Andres. |
I would try to find out what protocal/ports it uses for file transfer and the forward them in your iptables to the machines that need it. I'm sure MS has a whitepaper on messenger that would get you that information. Try searching for messenger port specifications at MS knowledge base.
|
A search here at LQ for ' msn AND messenger AND ipchains ' gave this one of many links...
http://www.linuxquestions.org/questi...r+AND+ipchains # example to allow users to use MSN # MSN messenger ipchains -A output -p tcp -s 192.168.100.10 1023:65535 --dport 1863 -j ACCEPT ipchains -A input -p tcp ! -y -s 64.4.13.0/24 --sport 1863 -d 192.168.100.10 1023:65535 -j ACCEPT :D |
Quote:
I knew this. and, surprisingly, I searched the forum! BUT i haven't found any working suggestions. what denies this solution: I have no entry in my firewall log (which logs all denies and drops) when MSN Messenger tries to connect... @Pcghost thanks for your advice too. BUT I have no entry in my firewall log (which logs all denies and drops) when MSN Messenger tries to connect... so it's NOT a specific port it's a ?NAT? problem - a ?system variable switch? or anything else I don't know about... and sadly thats a lot! any more? |
All times are GMT -5. The time now is 02:41 AM. |