Symmetric Nat Problem

Support section for FREESCO v0.3.x

Postby operativo » Fri Feb 23, 2007 3:58 pm

Hi, i got a problem with freesco 0.3.6 and applications like ekiga or amsn (for video chat).

Those software recognize I have a "symmetric nat" and for this reason they refuse to work.

Freesco 0.3.4 was the last version to have cone-nat (good for ekiga and amsn), so i'd like to know if there's a way to convert 0.3.6 symmetric nat into a cone nat.

Greetings
User avatar
operativo
Newbie
 
Posts: 5
Joined: Sat Oct 08, 2005 5:32 pm

Postby Lightning » Fri Feb 23, 2007 8:27 pm

Possibly if you install the VPN patch for 036 it may resolve the firewall to what you are asking for.
Code: Select all
pkg -i http://www.freesco.org/patches/patches-036-2

If this does not correct the problem then you will definately want to install 037 when it is released as it has an option to enable the old symetric NAT firewall format in the advanced setup.
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12079
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Postby Maine-iac » Fri Feb 23, 2007 11:21 pm

Lightning,

If what you are saying is that 037 will have an option to use the old full-cone nat that was in versions 034 and earlier, that will be most welcome. I might be able to get my sip phone to work on a newer version than 034!
"It don't mean a thing, if you can't get that ping."
User avatar
Maine-iac
Junior Member
 
Posts: 46
Joined: Wed Jul 17, 2002 8:06 pm

Postby Lightning » Sat Feb 24, 2007 12:28 pm

That is exactly what I am saying, it is an optional parameter that can be enabled to convert the firewall type and I am actually in the final stages of beta testing for 037
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12079
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Postby operativo » Sun Feb 25, 2007 5:36 am

That's a good news ^_^
User avatar
operativo
Newbie
 
Posts: 5
Joined: Sat Oct 08, 2005 5:32 pm

Re: Symmetric Nat Problem

Postby free » Thu Apr 28, 2011 8:21 pm

I have a similar problem:
How to enable full-cone nat in FREESCO v0.4.3 ?
Thanks.
User avatar
free
Junior Member
 
Posts: 33
Joined: Sun Feb 26, 2006 8:13 pm
Location: Bulgaria

Re: Symmetric Nat Problem

Postby Lightning » Fri Apr 29, 2011 5:48 pm

This question should be posted in support for 0.4.3. But it is an optional paramter in the 04x series. Run

setup -> system settings -> On/Off expert settings = y -> On/Off NAT firewall = s

Then save the settings and use

rc_masq restart

Which should resolve any issues with internal hardware.
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12079
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Re: Symmetric Nat Problem

Postby free » Mon May 02, 2011 1:46 pm

Follow the instructions for v0.4.3 , but NAT remains Port Restricted Cone.

Lightning wrote:This question should be posted in support for 0.4.3. But it is an optional paramter in the 04x series. Run

setup -> system settings -> On/Off expert settings = y -> On/Off NAT firewall = s

Then save the settings and use

rc_masq restart

Which should resolve any issues with internal hardware.


On the same hardware install v0.3.4 - everything works perfectly. NAT is Full Cone.
Where is the error?

Thank you.
User avatar
free
Junior Member
 
Posts: 33
Joined: Sun Feb 26, 2006 8:13 pm
Location: Bulgaria

Re: Symmetric Nat Problem

Postby Lightning » Mon May 02, 2011 7:15 pm

Where is the error?
Hmmmm, this will require a report.txt because the change of the firewall to "s" mode should be exactly the same firewall that was in 027 through 034. The firewall was improved to make multiple internal subnets work properly in later versions which also broke some of the various hardware aplications and the "s"mode was added to make the firewall setting optional depending on a single internal subnet or multiple subnets. Make the report with this command

report netinfo

Also if you could provide the same report for 034 it would be helpful.
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12079
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Re: Symmetric Nat Problem

Postby free » Tue May 03, 2011 4:23 pm

I attach the two reports. Both freesco's are run from floppy disk drive.
You do not have the required permissions to view the files attached to this post.
User avatar
free
Junior Member
 
Posts: 33
Joined: Sun Feb 26, 2006 8:13 pm
Location: Bulgaria

Re: Symmetric Nat Problem

Postby Lightning » Thu May 05, 2011 3:51 am

Unfortunately the 034 report is incomplete at the most critical section that I need. If there is some extra files on the disk that you can remove before running the report command it would be very helpful. There are subtle differences in what I have seen so far, but nothing that should cause it to not work as it is. But I need the rest of the report to really see. If there is no files to remove then just using this command will do what I need.

netinfo >/boot/report.txt
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12079
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Re: Symmetric Nat Problem

Postby free » Thu May 05, 2011 9:27 am

This is a requested report.
You do not have the required permissions to view the files attached to this post.
User avatar
free
Junior Member
 
Posts: 33
Joined: Sun Feb 26, 2006 8:13 pm
Location: Bulgaria

Re: Symmetric Nat Problem

Postby Lightning » Fri May 06, 2011 12:27 am

While 0.4.3 is running try this command from the command line and see if it makes a difference
Code: Select all
ipfwadm -F -i masquerad -W eth0 -S 192.168.0/24

If it works to solve your problem this command can be placed in the "$fire)" section of the /rc/rc_user script. But this is just my first suggestion, if it doesn't work there are several other possibilities.
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12079
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Re: Symmetric Nat Problem

Postby free » Sat May 07, 2011 3:58 pm

I used the following variants:
Code: Select all
ipfwadm -F -i masquerad -W eth0 -S 192.168.0/24

reboot
Code: Select all
ipfwadm -F -i masquerad -W eth0 -S 192.168.1/24

reboot
Code: Select all
ipfwadm -F -i masquerad -W eth0 -S 192.168.0.0/24

reboot
Code: Select all
ipfwadm -F -i masquerad -W eth0 -S 192.168.1.0/24

but without any success - no difference.
User avatar
free
Junior Member
 
Posts: 33
Joined: Sun Feb 26, 2006 8:13 pm
Location: Bulgaria

Re: Symmetric Nat Problem

Postby Lightning » Sun May 08, 2011 9:46 am

Try this change and see what happens.
cd /boot/bin
rm -f /boot/report.txt
snarf http://lewys-spot.dyndns.org/test/route
chmod +x route
cp /rc/rc_net /pkg/rc/rc_net
edit /pkg/rc/rc_net
Code: Select all
# Find this line around line number 58[/quote]
route add -host 255.255.255.255 $a;[ "$NBRG" = $y ] && ifconfig $a promisc allmulti
# Change it to this
route add -host all-in-one $a;[ "$NBRG" = $y ] && ifconfig $a promisc allmulti

# Save the changes with F10 and y
rc_net restart
If you are afraid that you might make a mistake. The chances are high that you will never learn anything.
User avatar
Lightning
FREESCO GOD !!
 
Posts: 12079
Joined: Wed Nov 14, 2001 6:50 am
Location: Oregon, USA

Next

Return to FREESCO Support for v0.3.x

Who is online

Users browsing this forum: No registered users and 3 guests

cron