LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Opening ports for games.
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 04-30-2005, 02:47 PM   #1
fipeso
Member
 
Registered: Apr 2005
Location: Finland, Nurmijärvi.
Distribution: Ubuntu 5.04 "Hoary Hedgehog"
Posts: 56

Rep: Reputation: 15
Opening ports for games.

So I want to make my home LAN more secure, and disable direct Internet access from LAN with a firewall, but allow web traffic via proxy.

Now if I want to play on-line games, I'm supposed to open a whole lot of TCP and UDP ports to the Internet.

Some how that does not feel right.

Ok, ok, its only my home LAN, but I am interested in the principle.

If I open a range of ports to the Internet in general, is that not almost the same, as not having Inet blocked from LAN ?

A malicious software or user, could simply set traffic to go out the ports opened for the games, and the firewall would not block it.

I would think one should only open ports to specific IP addresses on the net, not the whole world.

And ports opened for instant messaging, p2p, voip etc, would also be risky.

I'm newbie, so maybe I'm wrong.

Any comments?
 
Old 05-01-2005, 03:06 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
Depending on the types of games and the circumstances, you can often limit opening those ports to a limited number of predefined hosts or even to hosts that you initiate a connection with. For example if the online game only requires you to contact a gameserver, you can limit traffic on those ports to only the IP address of the gamesever. If you are connecting to other hosts in some type of PtP fashion, you might be able to limit incoming traffic to the ESTABLISHED,RELATED state. Again, it depends on the game and who you need to allow access.
 
Old 05-02-2005, 01:39 PM   #3
fipeso
Member
 
Registered: Apr 2005
Location: Finland, Nurmijärvi.
Distribution: Ubuntu 5.04 "Hoary Hedgehog"
Posts: 56

Original Poster
Rep: Reputation: 15
Thank You for Your comments.

I guess opening ports that is not opened to specific hosts on the Inet, is risky.

A virus could use known ports to send data through firewalls I guess.
Say on a Microsoft system, first read the registry on proxy info, and then use that info to get out to the net.

Here a policy for authentication on proxy could stop the virus.

Or a combination of a normal firewall and "personal" firewalls on the client, that restrict what programs may use specific ports.

Well, I only have a home office, so its not that big deal for me.

As long no one gets on my firewall, and uses it for illegal stuff.

I'm maybe a bit paranoid as I'm so new with Linux, I would probably not know if a virus or hacker or a 5 year old did something eevil on the Linux FW
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
opening ports I think jleipert Linux - Security 7 09-04-2005 09:14 AM
Opening ports lunke Linux - Security 10 06-07-2005 03:04 AM
Ports still not opening! Help? spam4scott Linux - Networking 1 05-28-2004 12:48 AM
Opening ports with IPFWADM jgosse01 Linux - Networking 1 08-27-2003 02:51 PM
Opening Ports george3k Linux - Newbie 7 02-16-2003 01:59 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 07:32 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration