using a WebCam on iFriends across an IPCHAINS firewall
 

Has anyone been able too make streaming video on iFriends
work across a IPCHAINS firewall?

Im using 2.2.20, seawall 4.01 (ipchains firewall), ipmasqadm-0.4.2-4.

The default streaming video port is 8080.

Essentially the iFriends server is trying to connect to port 8080 on the external address of my firewall, ie: 24.65.105.22:8080

How do i redirect this request to my internal machine??
ie: 24.65.105.22:8080 >>>> 192.168.0.10:8080

Will the responding video packets contain my private packets
as a result? If so, will MASQ process these packets aswell?

any response would be groovy :D

I haven't tried ifriends on ipchains but try the following.

Install the module for Port forwarding and tell your firewall to forward any inbound tcp/udp connections to the internal ip port 8080 address.

example:
modprobe ip_masq_portfw
ipmasqadm portfw -a -P tcp -L firewalls_ip 8080 -R internal_address 8080
ipmasqadm portfw -a -P udp -L firewalls_ip 8080 -R _internal_address 8080

Then set your ipchains rules as follows.
ipchains -A input -p tcp -s 0/0 --sport 1023:65535 -d firewalls_ip_address --dport 8080 -j ACCEPT
ipchains -A output -p tcp -s firewalls_ip_address --sport 8080 -d 0/0 -j ACCEPT
ipchains -A input -p udp -s 0/0 --sport 1023:65535 -d firewalls_ip_address --dport 8080 -j ACCEPT
ipchains -A output -p udp -s firewalls_ip_address --sport 8080 -d 0/0 -j ACCEPT

If it doesn't work it cause the client responds to the server while changing it's port address dynamically, then server then responds back and the firewall drops it cause it don't understand why the inbound port location has changed, i.e a module is need like for IRQ and IRC and ACTIVE ftp etc etc.

/Raz

I'll tell you ..... for a free account to iFriends.. :D

cant give u a free one...not allowed...
but im sure we can work something out ;)

so u have really got this working?

This is a free forum.

We don't expect payment for answering questions.
So either add something constructive or not at all.

/Raz