Hi,

I'm using the following IPTABLES ruleset for my firewall and am looking to allow some incoming and outgoing specific port traffic so on of the computers on the internal network can access Internet Gaming.

Current Ruleset:

$IPTABLES -P INPUT ACCEPT
$IPTABLES -F INPUT
$IPTABLES -P OUTPUT ACCEPT
$IPTABLES -F OUTPUT
$IPTABLES -P FORWARD DROP
$IPTABLES -F FORWARD
$IPTABLES -t nat -F

$IPTABLES -A FORWARD -i $EXTIF -o $INTIF -m state --state \
ESTABLISHED,RELATED -j ACCEPT
$IPTABLES -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT
$IPTABLES -A FORWARD -j LOG

$IPTABLES -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE

And I'm looking to allow the following:

Initial UDP Connection 6073 Outbound 6073 Inbound
Subsequent UDP Inbound 2302-2400 2302-2400
Subsequent UDP Outbound 2302-2400 2302-2400


Any help would be greatly appreciated!

:smash:

ok I'll try to write you the correct script for this.

First I need to know the internal IP addresses of the system where the UDP traffic is going to.

Also your script is not really a firewall, it's just sort of protecting the internal addresses through NAT.
You need a solid rule based firewall.

Also what size pipe do you have connect to the internet? "i.e 512kb DSL or Cable or Modem" as I'll add some performance bits depending on this.

/Raz