MOHAA & firewalls
Eric Koldeweij
eric at no-sense.net
Sat Apr 5 07:53:50 EST 2003
Just a little question:
I have (of course) a packet filter firewall running on my MOHAA server
machine, which is working fine by the way.
Now and then though I see a packet blocked which is always destined for
the "old" (not-Spearhead) server with a source port way below 1024 (like
1 or 2)
Good (unix) practice dictates that those originating ports should be in
the unprivileged range, i.e. above 1024 and that's why they're blocked here.
Can someone tell me if I should adapt my firewall? Does a MOHAA client
indeed use privileged ports to send packets from? Or is it something
else and should I leave it as is? I never heard unreachability
complaints and those packets don't appear frequently.
Here is a random example from the log (source & MAC address changed for
privacy reasons)
Mar 7 19:56:19 canopus kernel: PACKET DROP: IN=eth0 OUT=
MAC=blahblahblah SRC=1.2.3.4 DST=213.206.85.19 LEN=32 TOS=0x00 PREC=0x00
TTL=118 ID=6010 PROTO=UDP SPT=1 DPT=12203 LEN=12
Mar 7 19:56:23 canopus kernel: PACKET DROP: IN=eth0 OUT=
MAC=blahblahblah SRC=1.2.3.4 DST=213.206.85.19 LEN=32 TOS=0x00 PREC=0x00
TTL=118 ID=6028 PROTO=UDP SPT=2 DPT=12203 LEN=12
Mar 7 19:56:25 canopus kernel: PACKET DROP: IN=eth0 OUT=
MAC=blahblahblah SRC=1.2.3.4 DST=213.206.85.19 LEN=32 TOS=0x00 PREC=0x00
TTL=118 ID=6038 PROTO=UDP SPT=3 DPT=12203 LEN=12
It's not a problem, but I don't want to keep a legitimate gamer from
playing :)
Regards,
Eric.
More information about the Mohaa
mailing list