Need working iptables rules to allow XBox 360 to talk to Live server
Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Need working iptables rules to allow XBox 360 to talk to Live server
Hi all -
I'm trying to get a new XBox 360 to work on my network. I configured it
manually with a static IP address (192.168.1.29) on my internal network,
gave it all the appropriate network info, opened up the ports it needs
(UDP 88 and 3074, and TCP 3074; also tried TCP 53 briefly; 80 is already
open) and forwarded them through the firewall.
It seems to be able to get on the Internet per se (its network test says
that it gets out (it's able to ascertain that the XBox Live server is up
and running) but can't actually talk to the Xbox Live server because my
MTU is too low ("XBox Live requires a minimum MTU setting of 1364")...
However, I have set both interfaces to be configured on boot with an MTU
of 1500. This is not the problem. If I drop my firewall long enough to
run the connection test, it works.
SO...does anyone have a set of iptables rules which will definitely allow
the XBox 360 on my internal network to talk to the XBox Live server? Does it
use high-order ports to talk to 53 and 88 on the M$ server?
You could use wireshark to check the traffic being generated by the XBox. Or, if you trust what it's doing, you just let it connect to anything it wants to (you should check which NIC the traffic is on, but it's up to you you):
Code:
iptables -t filter -A FORWARD -p TCP -s 192.168.1.29 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -t filter -A FORWARD -p UDP -s 192.168.1.29 -m state --state NEW,ESTABLISHED -j ACCEPT
For the inbound traffic you'd either allow the reverse of those rules, or your network may just accept inbound traffic from existing connections:
Code:
iptables -t filter -A FORWARD -p TCP -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -t filter -A FORWARD -p UDP -m state --state ESTABLISHED,RELATED -j ACCEPT
Thanks...I had considered doing that already but wanted to try and "protect" the console. But after tearing my hair out for another hour or so, figured that it's under warranty, so it's M$'s problem if somebody cracks it, so added those FORWARD rules. It works now (though I still need to DNAT UDP 88 and TCP/UDP 3074 specifically).
In the NAT file, I have this:
UDP 88 192.168.1.29 88
TCP 3074 192.168.1.29 3074
UDP 3074 192.168.1.29 3074
(192.168.1.29 is the XBox's IP address).
This may be overkill for what you want, but if you look at the port-forwarding and "GAMES" routines in the main script and the options in the config file, you'll likely figure out which rules you need.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
