<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2800.1106" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY
style="BORDER-RIGHT: medium none; BORDER-TOP: medium none; FONT: 10pt verdana; BORDER-LEFT: medium none; BORDER-BOTTOM: medium none"
bgColor=#ffffff>
<DIV><FONT face=Arial>Ouch. New to linux.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>Well, here comes the bible.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>OK, you have iptables firewall, which means you probably
run the server</FONT></DIV>
<DIV><FONT face=Arial>in your internal network with internal adresses,
right?</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>If not, just forget about the rest of this and see first
that you can connect</FONT></DIV>
<DIV><FONT face=Arial>the game from your intenal network. However, if the game
announces </FONT></DIV>
<DIV><FONT face=Arial>itself in gamespy, the server should be up and running
ok.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>You probably have also set up NAT (network address
translation)/IPMasq</FONT></DIV>
<DIV><FONT face=Arial>on your firewall, so when the server gives an outbound
notification to</FONT></DIV>
<DIV><FONT face=Arial>gamespy, that goes fine. The inbound traffic
doesn't com through, if you</FONT></DIV>
<DIV><FONT face=Arial>don't set it spesifically up in iptables.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>You need two things in your iptables script for each tcp
& udp port you</FONT></DIV>
<DIV><FONT face=Arial>want to forward from your firewall: </FONT><FONT
face=Arial>prerouting & portforwarding.</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>You need to add most of the following in your existing
iptables script.</FONT></DIV>
<DIV><FONT face=Arial>Check out /etc/rc.d/rc.firewall, I don't remember where
stock RH 8.0</FONT></DIV>
<DIV><FONT face=Arial>install generates this. </FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial>The usual stuff goes in here: Know and understand what
you're doing,</FONT></DIV>
<DIV><FONT face=Arial>do it right, not wrong, and I take not reponsibility
whatsoever. :-)</FONT></DIV>
<DIV><FONT face=Arial></FONT><FONT
face=Arial>---------------------------------------------------------------------------</FONT></DIV>
<DIV><FONT face=Arial># Variables: <BR># your location of iptables program
(probaly set up already)<BR>IPTABLES=/sbin/iptables</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial># your external ip address (static or dhcp, on you
firewall, from yout ISP)</FONT></DIV>
<DIV><FONT face=Arial># YOU HAVE TO FILL THIS IN</FONT></DIV>
<DIV><FONT face=Arial>$EXTIF_IP=</FONT></DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV><FONT face=Arial># the internal ip address on the machine whre your MOHAA
server runs<BR># CORRECT THIS TO MATCH YOURS</FONT></DIV>
<DIV><FONT face=Arial>$INTERNAL=192.168.0.5</FONT></DIV>
<DIV><FONT face=Arial><BR># Medal of Honor-port:</DIV>
<DIV># (some sources have it that you should have </DIV>
<DIV># more ports open, but this should do).</DIV>
<DIV># In case your email client word-wraps this: </DIV>
<DIV># ONLY TWO LINES FOLLOWS HERE<BR>$IPTABLES -t nat -A PREROUTING -p udp -d
$EXTIF_IP --dport 12203 -j DNAT --to $INTERNAL:12203<BR>$IPTABLES -A FORWARD -p
udp -d $INTERNAL --dport 12203 -j ACCEPT</DIV>
<DIV> </DIV>
<DIV>---------------------------------------------------------------------------------------</DIV>
<DIV>After running the script (for eample ./rc.firewall) You
can observe</DIV>
<DIV>the result with iptables -L</DIV>
<DIV>And oh yes, you must be root or do su before you are allowed to</DIV>
<DIV>change this on your firewall.</DIV>
<DIV> </DIV>
<DIV>You shouldn't need to do anything on the linux machine where </DIV>
<DIV>the game runs - if it's not the same machine which is the</DIV>
<DIV>firewall. In that case all of this with iptables should be</DIV>
<DIV>unnecessary.</DIV>
<DIV> </DIV>
<DIV>There's a lot of good stuff about the iptables in the internet,</DIV>
<DIV>try for example <A
href="http://iptables-tutorial.haringstad.com">http://iptables-tutorial.haringstad.com</A></DIV>
<DIV> </DIV>
<DIV>Good luck and happy gaming.</DIV>
<DIV>Heikki</FONT></DIV>
<BLOCKQUOTE dir=ltr
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=magnus_wiberg@msn.com href="mailto:magnus_wiberg@msn.com">Magnus
Wiberg</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A title=mohaa@icculus.org
href="mailto:mohaa@icculus.org">mohaa@icculus.org</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Sunday, November 17, 2002 6:01
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> [mohaa] Need Help</DIV>
<DIV><FONT face=Arial></FONT><FONT face=Arial></FONT><BR></DIV>
<DIV>Im trying to set up a Linux Server to run my MOHAA server on.</DIV>
<DIV><FONT face=Arial></FONT> </DIV>
<DIV>System spec.</DIV>
<DIV>Red hat 8.0</DIV>
<DIV>2 nics </DIV>
<DIV> </DIV>
<DIV>Services on server<BR>Firewall. (Iptables)</DIV>
<DIV> </DIV>
<DIV>Problem.</DIV>
<DIV>Users cant connect.</DIV>
<DIV> </DIV>
<DIV>Ther server shows up in Gamespy/ASE but people cant connect.</DIV>
<DIV> </DIV>
<DIV>I have set host name in /etc/hosts/ to my external IP.</DIV>
<DIV> </DIV>
<DIV>Any more info you people need just answer my post.</DIV>
<DIV> </DIV>
<DIV>Iam new to linux so i need good instruction on how to do things.</DIV>
<DIV> </DIV>
<DIV>Desperate for Answers </DIV>
<DIV>/Magnus Wiberg</DIV><BR clear=all>
<HR>
Få ut mesta möjliga av webben. Hämta MSN Explorer UTAN KOSTNAD på: <A
href="http://explorer.msn.se">http://explorer.msn.se</A><BR>
<P></P></BLOCKQUOTE></BODY></HTML>