GRebel,
Well I've just come back from the pub so this might not make much sense but I'll have ago.
Right.
You must have 2 IP address for you to get this far.
First ip address is your external ISP address allocated to your ISP for you by the IANA. "known as your internet address"
But correctly called XPN address "external public network address"
Second ip is your internal address which is allowed by one of the following ranges that you decide. "known as your IPN Internal public address"
10.0.0.0/8
172.16.0.0/12
192.168.0.0/16
On your system you must know this info when you set it up
So type #ifconfig -a
you'll get the address's setup for you on your interface(s)
example:
eth0 Link encap:Ethernet HWaddr 00:50:8B:9A:7A:9C
inet addr:10.5.1.4 Bcast:10.5.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:415337 errors:0 dropped:0 overruns:0 frame:0
TX packets:399742 errors:0 dropped:0 overruns:0 carrier:3
collisions:5067 txqueuelen:100
Interrupt:17 Base address:0x3000
eth0:0 Link encap:Ethernet HWaddr 00:50:8B:9A:7A:9C
inet addr:32.96.111.130 Bcast:32.96.111.255 Mask:255.255.255.252
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Interrupt:17 Base address:0x3000
in this case it's an example so the eth0 ip address is the IPN address of 10.5.1.4
The eth0:0 ip address is internet IP address of 32.96.111.130
"Yes this is my real IP address lol"
Right next step is to find the ip address of the IRC server you want to allow access to your auth port on.
So as EF net are large, I don't know the range of IP address's they have.
Connect to them and wait for that error you got last time.
When it says this type this and get the info you need
#ipchains -L -M -n
should see something that shows your server accessing the IRC server including the address you need.
example:
prot expire source destination ports
TCP 22:27.77 10.5.1.10 212.16.1.11 2311 (62708) -> 194
port 194 is used by IRC + ports 6667
now the server address is 212.16.1.11 in this example:
ok so once you know this you can setup a rule just for this server.
so you would type the following info from the example above. "only on input chain"
ipchains -A input -p tcp -s 212.16.1.11 --sport 1023:65535 -d 32.96.111.130 --dport 113 -j ACCEPT
"-s is the server address"
"-d is your IP address given to you by the ISP"
Now you have a more secure rule where only the IRC server can hack you back.
Look, Linux is not for using as a IRC client so if you want to do this do it at your own risk, or use a Windows system that doesn't understand Auth requests.
ps. if you have only one external IP address and don't any internal systems to connect to the internet, I would use your linux box to route the Windows systems to so this for you with NAT. "network address translation ..."
/RAz