iptables settings to allow PSP on line gaming
Tim Wunder
tim
Sat Dec 31 13:32:23 PST 2005
On Saturday 31 December 2005 12:56 pm, someone claiming to be Bruce Marshall
wrote:
> On Saturday 31 December 2005 12:20, Tim Wunder wrote:
> > 10.0.0.101 is the PSP.
> >
> > We'll keep trying, but it'd be easier if someone who knew could point us
> > in the right direction...
>
> I don't have a PSP but I just did a google for "PSP ports firewall" and
> it looks like a lot of good stuff was found.
Well, I flushed the rules with iptables -F and the PSP is able to connect. A
tcpdump of the connection can be found here:
http://www.thewunders.org:9000/files/connect.log
Once I reestablish the firewall, the connection is lost. So something in my
iptables rules is blocking it... Doh!
iptables -A adds rules... adding rules after rejecting everything doesn't
work...
Changed it to iptables -I and now we have a connection, and game play.
FWIW, this seems to be allowing it:
# iptables -I RH-Firewall-1-INPUT -i eth1 -p tcp -m tcp --sport 50000: -m
state --state NEW -j ACCEPT
# iptables -I RH-Firewall-1-INPUT -i eth1 -p tcp -m tcp --sport 10070:10080 -m
state --state NEW -j ACCEPT
# iptables -I RH-Firewall-1-INPUT -i eth1 -p udp -m udp --sport 6000:7000 -m
state --state NEW -j ACCEPT
I'd like the rules to be more specific, but this'll work for now...
Thanks,
Tim
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://mail.linux-sxs.org/pipermail/linux-users/attachments/20051231/6d0c4c3d/attachment.pgp
More information about the Linux-users
mailing list