[ale] IPCAINS and Half-Life/Quake
Lathe
magius at wittsend.com
Sun Nov 19 00:02:55 EST 2000
Hello all,
I am using the IPCHAIN firewall utility to administer my firewall. For
general security precautions, the last 2 rules in the input chain are DENY
for UDP and TCP. I am masquerading a Windows box in the network to play
Half-Life. Unfortunatly, therein lies the problem.
I know the follwing information that applies to another firewall, Winroute,
and have attempted to apapt the same port information to IPCHAINS. No luck
though.
For Wingate 2.1d and 3.0 (you can get 2.1d from the above URLs):
Half-Life Auth Server: TCP 7002 -> half-life.east.won.net:7002
Half-Life WON Server: TCP 6003 -> half-life.east.won.net:6003
Half-life Server Master: UDP 27010 -> half-life.east.won.net:27010
Half-Life Game Server1: UDP xxx -> ip.address.of.game.server:270xx
Half-Life Game Server2: UDP 27015 -> another.game.server:27015
Then connect to the game using the console: Connect wingate:27015
Here is what I have attempted:
ipchains -I input -p tcp -s 0.0.0.0/0.0.0.0 7002 -d 0.0.0.0/0.0.0.0 7002 -j
ACCEPT
ipchains -I input -p tcp -s 0.0.0.0/0.0.0.0 6003 -d 0.0.0.0/0.0.0.0 6003 -j
ACCEPT
ipchains -I input -p udp -s 0.0.0.0/0.0.0.0 27000:27015 -d 0.0.0.0/0.0.0.0
27000:27015 -j ACCEPT
>From what I understand of IPCHAINS, this should work, however, it doesn't.
Also, when I turn off the DENY rules of UDP and TCP, everything works fine.
Anyone have any suggestions as to what I might be doing wrong or another way
to play Half-Life through a Linux Firewall?
Thanks in advance
Scott M. Warfield
Internet Security Systems
IDS Engineer
http://malamber.wittsend.com/
"It's lonely at the top, but you eat better."
--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.
More information about the Ale
mailing list