[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Mldonkey-users] mldonkey and firewalls
From: |
Goswin Brederlow |
Subject: |
Re: [Mldonkey-users] mldonkey and firewalls |
Date: |
05 Sep 2002 12:18:54 +0200 |
User-agent: |
Gnus/5.0808 (Gnus v5.8.8) XEmacs/21.4 (Honest Recruiter) |
Dirk Stoecker <address@hidden> writes:
> Hi,
>
> I'm running a Linux box with iptables firewall installed on it and running
> the edonkey linux GUI as well as mldonkey. I opened the necessary ports
> for the protocols, but only these. For example 4661 for the servers, but
> nothing else.
>
> An option to automatically remove servers which do not match port settings
> would be fine (e.g. as comma seperated list).
>
> e.g. for edonkey
> allowed server-ports: 4661
> allowed client-ports: 4662,4664 (4664 is my mldonkey port :-)
>
> This would reduce the useless entries in server lists and also the useless
> tries to connect on all the other ports.
1. You should reject packages instead of dropping them (if you do
so). That way the client direclty gets a connection refused.
2. Why would you block connects from the inside from your mldonkey to
some outside port? Its true that some Trojan Horse could open a connect
outgoing to let someone in, but do you start Trojan Horses?
I would allow all connects from high ports to the outside or run
mldonkey as its own user and allow all outgoing connects of that user.
> Also an overview about the protocols and all the default ports as well as
> the transfer formats would be very helpful.
>
> e.g.
> (out --> outgoing destination port is xxx)
> (in --> incomming destination port is xxx)
>
> TCP 4661 out donkey - default port for server connection
> TCP 4662 out/in donkey - default port for client connection
> UDP 4665 out ???
> (.. to be finished...)
>
> usually local only:
> TCP 4000 in/out telnet access mldonkey
> TCP 4001 in/out GUI access mldonkey
> TCP 4080 in/out WWW access mldonkey
> TCP 4663 in/out edonkey client GUI
>
> Such a list would reduce the need to experiment with the port settings a
> lot.
I would like that too.
MfG
Goswin
- [Mldonkey-users] mldonkey and firewalls, Dirk Stoecker, 2002/09/05
- Re: [Mldonkey-users] mldonkey and firewalls,
Goswin Brederlow <=
- Re: [Mldonkey-users] mldonkey and firewalls, Alexander Gretencord, 2002/09/05
- Re: [Mldonkey-users] mldonkey and firewalls, Goswin Brederlow, 2002/09/05
- Re: [Mldonkey-users] mldonkey and firewalls, Alexander Gretencord, 2002/09/06
- [Mldonkey-users] mldonkey killing servers, Roland Arendes, 2002/09/06
- Re: [Mldonkey-users] mldonkey killing servers, Alexander Gretencord, 2002/09/06
- Re: [Mldonkey-users] mldonkey killing servers, Goswin Brederlow, 2002/09/06
- Re: [Mldonkey-users] mldonkey killing servers, unixach, 2002/09/06
- Re: [Mldonkey-users] mldonkey killing servers, Goswin Brederlow, 2002/09/06