Allow incoming TCP 6881 - 6889 to join the torrent swarm.
http://torrent.dulug.duke.edu/
I thought this might be a good time to try using / learn to use Bittorrent. The red hat 9 rpm pacakage is already installed, but I don't know if /how to enable the above ports. If I go to security settings, I *know* that just saying TCP is a trusted device will open all ports.
.... I guess this is something else I ought have learned to do <*blush*> so feel free to rap me on the knuckles if I'm asking a stupid / annoying question!
Elton ;-)
Elton Woo wrote:
Allow incoming TCP 6881 - 6889 to join the torrent swarm.
http://torrent.dulug.duke.edu/
I thought this might be a good time to try using / learn to use Bittorrent. The red hat 9 rpm pacakage is already installed, but I don't know if /how to enable the above ports. If I go to security settings, I *know* that just saying TCP is a trusted device will open all ports.
.... I guess this is something else I ought have learned to do <*blush*> so feel free to rap me on the knuckles if I'm asking a stupid / annoying question!
Elton ;-)
RAP...RAP...just kidding. This is actually a very poignant question, because it doesn't look like there is a way to do it using redhat-config-securitylevel. I usually do it with kickstart, passing the --port=6881:tcp option to the firewall line. I tried doing that to redhat-config-securitylevel, to no avail.
So, you can edit /etc/sysconfig/iptables by hand and add a line like this _before_ the REJECT lines:
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 6881:6889 --syn -j ACCEPT
This is definitely worth a bugzilla entry.
Forrest
Viestissä Torstai 25. Syyskuuta 2003 21:49, Elton Woo kirjoitti:
Allow incoming TCP 6881 - 6889 to join the torrent swarm.
http://torrent.dulug.duke.edu/
I thought this might be a good time to try using / learn to use Bittorrent. The red hat 9 rpm pacakage is already installed, but I don't know if /how to enable the above ports.
I used: iptables -I RH-Firewall-1-INPUT --protocol tcp --dport 6881:6889 -i eth1 -j ACCEPT You should change "eth1" to match your external interface.
On September 25, 2003 03:43 pm, Markku Kolkka Markku Kolkka markkukolkka@kolumbus.fi wrote:
Viestissä Torstai 25. Syyskuuta 2003 21:49, Elton Woo kirjoitti:
Allow incoming TCP 6881 - 6889 to join the torrent swarm.
http://torrent.dulug.duke.edu/
I thought this might be a good time to try using / learn to use Bittorrent. The red hat 9 rpm pacakage is already installed, but I don't know if /how to enable the above ports.
I used: iptables -I RH-Firewall-1-INPUT --protocol tcp --dport 6881:6889 -i eth1 -j ACCEPT You should change "eth1" to match your external interface.
root]# iptables -I RH-Firewall-1-INPUT --protocol tcp --dport 6881:6889 -i eth0 -j ACCEPT iptables: No chain/target/match by that name
... what am I still doing wrong here? My nic *is* eth0.
Elton 8<\
do an "iptables-save" to see your active rules. your chain (RH-Firewall-1-INPUT) may need to be changed depending on how you initially created/configured your firewall. Once that's worked from the command line, do an "iptables-save > /etc/sysconfig/iptables" to write the new config file. You will probably then have to manually edit it to place the new rule before (i.e. above) the REJECT rule.
Hope this helps. -dave
Elton Woo wrote:
On September 25, 2003 03:43 pm, Markku Kolkka Markku Kolkka markkukolkka@kolumbus.fi wrote:
Viestissä Torstai 25. Syyskuuta 2003 21:49, Elton Woo kirjoitti:
Allow incoming TCP 6881 - 6889 to join the torrent swarm.
http://torrent.dulug.duke.edu/
I thought this might be a good time to try using / learn to use Bittorrent. The red hat 9 rpm pacakage is already installed, but I don't know if /how to enable the above ports.
I used: iptables -I RH-Firewall-1-INPUT --protocol tcp --dport 6881:6889 -i eth1 -j ACCEPT You should change "eth1" to match your external interface.
root]# iptables -I RH-Firewall-1-INPUT --protocol tcp --dport 6881:6889 -i eth0 -j ACCEPT iptables: No chain/target/match by that name
... what am I still doing wrong here? My nic *is* eth0.
Elton 8<\