|
5.2 Applications·AIM - AOL Instant Messaging
·FTP- How to get it to work
·FTP- How to get it to work - 7004BR
·FTP- Barricade - WIN XP & WIN 2000
·Fxp with flashfxp and smc7004abr
·ICQ (I Seek You) ver. ICQ 2000b
·ICQ 2001 --- latest version
·IRC - Internet Relay Chat
·Microsoft's Netmeeting
·PhoneFree
·UT - Unreal Tournament Server
·VPN - Virtual Private Networking.
·SMC 7004BR with Checkpoint SecureClient and DSL Configuration
|
| |
+ The 7004BR and 7008BR.
Should not be any issues with "keyboard chat" in AIM.
+ The ABR.
No information at this time.
 feedback form
 feedback form
by Greywolf  |
| |
Thanks to "Ook" for the following information...
During FTP connections/transfer there are always 2 ports involved. The first port is the control port (the port which people connect to to access the FTP server) which is used for the commands from and to the server. The second port is the data port, used for data transfers (including the LIST command), and this is where active and passive FTP plays a role. The data port is usually a random port above 1024.
When a file is a downloaded in active mode the FTP client determines the data port to be used and sends this info, along with its internal IP, to FTP server with the PORT command. The FTP server in term connects to the client(hence "Active" mode) on the specified ports and IP.
In Passive mode it is the other way around (the server determines the port and IP, and the client connect to that port and IP using the PASV command; overall, the server is "passive" in the transfer procedure).
As you can see there are 2 problems when working with a router:
1) Running an FTP server with clients connecting in passive mode (router blocks incoming connections from the clients to the data port determined by the FTP server).
2) As an FTP client, connecting in active mode won't work by default (the router is blocking the incoming connections from the "active" ftp server).
In conclusion, to get the 2 prior points to work ok you'll have to open up a range of ports in your virtual server page. This range should consist of at least 1 available port for each connected client to the ftp server.
For the problem with the FTP client, one could always enter the port number which is used in the "Non-standard FTP port" setting in the Misc. section of your router's webconfig. I use FlashFXP as my FTP client because it has some nice active/passive features. For instance, you can set it to present a specified IP during active ftp connections. In this way your ftp client will not present it's private (192.168.x.x) IP address, but the IP specified in the Pref's section. It also has the capability to bind it to an range of ports so you can open them in the virtual settings page to use during active transfers.
Also see the pic below..
feedback form
feedback form
by Greywolf |
| |
Thanks to "nekote" for this information...
Using Rev R1.93e (7004BR)
Login to your SMC 7004BR - IP 192.168.123.254 for me
»192.168.123.254/[?]
Select "Virtual Server"
Set "Service Ports" to 21 and "ServerIP" set to 192.168.123.xxx and "Enable".
You probably want to establish a particular system as the FTP host to be a fixed (xxx) IP.
So, go to the main menu choice of "DHCP Server" and select "Fixed Mapping". Enable "MAC Address Control". Set the "MAC Address" to the 6 hexadecimal digit pairs of the NIC and "IP Address" to xxx. That will make the 7004BR always reserve / assign xxx to the specified NIC, thus insuring a valid FTP mapping.
Not complete, but it is how I made it work on my system.
feedback form
feedback form
by Greywolf |
| |
Thanks to "b_warden" for these insights....
I have personally have Windows 2000 - 7004ABR with the latest firmware (1.40) and have a different setup. To get my FTP server working properly, I need to set a port in Private and Public port in Virtual Server page ( default : 21 TCP ) and use that same port as a trigger in the Special Apps page. In my FTP server app ( GuildFTPd ), I enter in my WAN IP and the desired port range that will be used. This port range will then go into the Special Apps page listed under Public Port.
Another member in the forum, Arosene, owns the 7004ABR with Windows XP Pro installed, but his setup does not require entering in the port in Virtual Server page ( default : 21 TCP ). He too, uses GuildFTPd, and has no problems...yet.
I have tried disabling the port used in Virtual Server page to see if it is possible for a user to connect, but unfortunately, the user could not log in. When entering the port back in Virtual Server page, the user immediately connected.
I came to the conclusion that there may be an platform issue. Both Arosene and I didn't understand why two almost identical setups ( same FTP server app and router ) presented slightly different configurations.
feedback form
feedback form
by Greywolf |
| |
You need to open port 5011 TCP in the virtual server.
In flashFXP go into options preferences then click on ident-proxy server. Make sure passive is checked.
feedback form
feedback form
by Greywolf |
| |
+ The 7004BR and 7008BR.
For ICQ 2000b
Click "ICQ" button -> Connections -> Server Tab
Under proxy settings select "using firewall" and "not using proxy"
+ The ABR.
No information at this time.
feedback form
feedback form
by Greywolf |
| |
As said by Ook!
Using ICQ2000(b) I had to open up some port for transfers/chats like mentioned in the 2 prior links.
I installed ICQ2001 last week and (ofcourse) I used the same connect and transfer ports as I did with 2000b. 2001 went online OK, but file transfers, chats and the (new) ICQ shared file system didn't work at all ("Can't establish a direct connection").
After some playing around with the available ports I noticed that when I set everything to default on the "User" tab (Connections settings) it all works great!
I stopped forwarding any ports on my router for ICQ and checked again, and, strangely, everything worked ok.
I think ICQ has found some nice way to work without any firewall settings at all; I've only changed 1 setting on the Server tab ("Not using firewall" to "Using firewall, not using proxy") and it just works great behind a router.. even the ICQ shared folder works like it's supposed to.
feedback form
feedback form
by Greywolf |
| |
+ The 7004BR and 7008BR.
Trigger Port to 7000
Trigger Port to TCP
Public Port 113
Enabled: (remember to check enabled box)
If you are using mIRC go to OPTION, CONNECT, OPTIONS, then type 7000 in the default server box, doing this will allow you to avoid making a lot of port mappings for all the possible server ports.
+ The ABR.
I cannot DCC send or access some other functions of IRC.
Here is the information that we have on IRC.
IRC DCC.
The IRC port is usually 6667, but is sometimes 7000
OUT TCP 6667
or
OUT TCP 7000
IN TCP 113
IRC Chat
OUT TCP 100
IN TCP 101
IRC Fserve
OUT TCP 110
IN TCP 111
IRC IDENT
IN UDP 113
IRC Send
OUT TCP 120
IN TCP 121
IRC Get
OUT TCP 130
IN TCP 131
You need to open the appropriate ports in the router's firewall and you will be able to operate IRC as you usually do. You can put this information in Virtual Server and/or Special Applications. Try setting the above ports (i.e. - 113, 6667, 7000, 120, 130, etc) as Triggers and then set the incoming ports to 6667,7000,100-131. Also, go into Virtual Server and put in 113, 6667, 7000, etc. as Service Ports along with your IP Address (the public ports equal the private ports). Lastly, if you still have problems, try setting the public ports in Special Applications to 1-64535 (note: this opens a WIDE range of ports).
{direct from SMC Networks Web site.}
feedback form
feedback form
by Greywolf |
| |
Netmeeting uses a large range of ports and my be a security hazard opening the many required ports. It may be better at this time to just put computer in DMZ during Netmeeting session.
This is what MICROSOFT has to say....
»support.microsoft.com/support/kb···6/23.asp
--------------------------
MS Netmeeting is a router-unfriendly application simply because of that fact that it uses dynamic ports - meaning that every time the application is opened, it is using different ports to operate. Hence, this application does not work well behind any NAT firewall. Some customers have been able to get this application to work by opening up all the ports for certain triggers.
This is definitely not recommended by SMC, but we can provide you with the information these customers have given us. Beyond this, there is nothing else that can be done. If this info does not solve your problem, please contact Microsoft.
----
Triggers = 389, 522, 1503, 1024, 1720, 1731
Incoming ports (the same for all triggers) = 1-64535
All the ports are TCP. You can also try putting your machine in the DMZ (through Misc. Items) and make sure that you have upgraded the firmware on the router.
feedback form
feedback form
by Greywolf |
| |
This information from Practicallynetworked.com......
PhoneFree
(Watch Out! Opens a wide port range!)
IN UDP 1034 - 1035
IN UDP 9900 - 9901
IN TCP 1034 - 1035
IN TCP 2644
IN TCP 8000
This Mapping is needed to hear the audio from the incoming
party, outgoing audio
would work without it.
** According to phonefree the ports you need open are:
8000 TCP For Server access
1034 UDP Voice in/out
1035 TCP Voice in/out
2644 TCP Personal Communication Center
I found that port range 9900-9901 UDP is also needed but
not mentioned at
phonefree support.
Also shut off any other firewall programs you may have
running.
To make PC-TO-PHONE calls, it seems only UDP port 9900
must be opened
(the fewer ports open, the better!).
feedback form
feedback form
by Greywolf |
| |
Unreal Tournament server
IN UDP 7777 (default gameplay port)
IN UDP 7778 (server query port
IN UDP 7779+ (UDP 7779+ are allocated dynamically for each helper UdpLink objects, including UdpServerUplin objects. Try starting with 7779-7781 and add ports if needed.))
IN UDP 27900 (server query, if master server uplink is enabled. Some master servers use other ports, like 27500)
IN TCP 8080
(Port 8080 is for UT Server Admin. In the [UWeb.WebServer] section of the server.ini file, set the ListenPort to 8080 (to match the mapped port above) and ServerName to the IP assigned to the router from your ISP.
(direct from practicallynetworked.com)
feedback form
feedback form
by Greywolf |
| |
+ The 7004BR and 7008BR.
Firmware upgrades later than 1.93e seem to handle VPN and IPSec issues with out a problem.
If using early versions of firmware, it is suggested you upgrade to latest firmware.
Other option is to put computer into DMZ though this poses a security risk because of missing NAT firewall.
+ The ABR.
No information at this time.
feedback form
feedback form
by Greywolf |
| |
The following works in my configuration of Verizon DSL using PPPOE. Before I found the correct settings below the SecureClient would report Packet Fragmentation Errors.
1. Make sure you are using the latest SecureClient build from Checkpoint.
2. In the SecureClient software choose: Tools > Advanced IKE Settings. Select both "Force UDP Encapsulation" and "Support IKE over TCP"
3. Make sure that the SMC Router MTU is set to 1492. To change router MTU go to "192.168.123.254/sysp.htm"
4. Change your PC MTU to 1000 using DrTCP. You can get the lateest DrTCP from "http://www.dslreports.com/front/drtcp.html"
5. Reboot PC
6. Log in and enjoy...
Using this configuration I lost about 4% of my D/L speed due to the reduced MTU.
feedback form
feedback form
by Mkpd edited by 72245156
last modified: 2003-12-16 12:50:05 |
