aMule Forum
English => aMule Help => Topic started by: fetchIT on July 25, 2015, 03:22:36 PM
-
As I've gotten to know that a HighID could establish a high speed connection between double clients. And I've searched the method on aMule website, like this one:
http://wiki.amule.org/wiki/Firewall,
and my OS is Fedora22. So I've cautioned to the specific guide for Fedora users and the very below article: IPTables Configuration.
In IPTables Configuration, it said to input these codes in terminal:
iptables -A INPUT -p tcp --dport XX -j ACCEPT
iptables -A INPUT -p udp --dport XX+3 -j ACCEPT
iptables -A INPUT -p udp --dport YY -j ACCEPT,
I've done as it said but not confident it's solved the problem.
And in the specific guide for Fedora users, this Howto contains these scripts:
/sbin/iptables -I RH-Firewall-1-INPUT -p tcp --dport 4662 -j ACCEPT
/sbin/iptables -I RH-Firewall-1-INPUT -p udp --dport 4665 -j ACCEPT
/sbin/iptables -I RH-Firewall-1-INPUT -p udp --dport 4672 -j ACCEPT,
but it fails and the command line replys:
iptables: No chain/target/match by that name.
Whole of all, could someone sort it out for me,first, which instruction page should I come across, the universal one or the specific one? Second, how come the iptables denies my options?
Any answer is appreciated.
Additionally, I've forwarded a tcp por and two udp ports to my router's IP address, 192.168.1.1 and with a port 80 in Firewall setting GUI, in particular, on permanently mode.
-
/sbin/iptables -I RH-Firewall-1-INPUT -p tcp --dport 4662 -j ACCEPT
/sbin/iptables -I RH-Firewall-1-INPUT -p udp --dport 4665 -j ACCEPT
/sbin/iptables -I RH-Firewall-1-INPUT -p udp --dport 4672 -j ACCEPT,
but it fails and the command line replys:
iptables: No chain/target/match by that name.
Whole of all, could someone sort it out for me,first, which instruction page should I come across, the universal one or the specific one? Second, how come the iptables denies my options?
Any answer is appreciated.
Very stupid question: have you configured a chain named "RH-Firewall-1-INPUT"?
Which is the output of
iptables -L
?
As regards documentation: I suggest to check the NETFILTER site (http://www.netfilter.org/documentation/index.html)
Additionally, I've forwarded a tcp por and two udp ports to my router's IP address, 192.168.1.1 and with a port 80 in Firewall setting GUI, in particular, on permanently mode.
I guess that these TCP and UDP ports are the same used for amule, so
TCP 4662
UDP 4675
UDP 4665 (value of TCP + 3)
right?
The TCP port 80 is not needed by aMule, so I suspect that you are running a web server.
Bye,
Mr Hyde
-
Yes, Mr Hyde, you're so right. The question is as stupid as it is. Now I can knowingly use the command iptables -N to create the chain successfully. But I can't save it use the command:
/sbin/service iptables save,
it just replies:
The service command supports only basic LSB actions (start, stop, restart, try-restart, reload, force-reload, status). For other actions, please try to use systemctl.
On the other hand, when the ed2k network connected, it still got a LowID unexpected. I've set my aMule tcp port to 4811 as the wiki page indicate that some ISPs will block the port 4662, will the change involve the effect of the command updating iptables? Yet I suppose not, but I'm not so sure. Cos the instruction page says :
IPTables Configuration
If you set TCP port in aMule to XX and UDP port to YY then you have to set your firewall like this:
iptables -A INPUT -p tcp --dport XX -j ACCEPT
iptables -A INPUT -p udp --dport XX+3 -j ACCEPT
iptables -A INPUT -p udp --dport YY -j ACCEPT
why those two surge of commands are different? Which one I should use?
Could you help me again?
PS:
When I review the iptables, the bottom three lines are what I inserted. And I found the line where I inserted port 4672 displays 'dpt:rfa', I very wonder what that mean.
-
/sbin/service iptables save,
it just replies:
The service command supports only basic LSB actions (start, stop, restart, try-restart, reload, force-reload, status). For other actions, please try to use systemctl.
Well, I'm not an expert but obviously the message is telling you that "service" command has no "save" command.
What exactly you want to do?
Maybe you want to use the command "iptables-save" instead?
On the other hand, when the ed2k network connected, it still got a LowID unexpected. I've set my aMule tcp port to 4811 as the wiki page indicate that some ISPs will block the port 4662, will the change involve the effect of the command updating iptables? Yet I suppose not, but I'm not so sure. Cos the instruction page says :
IPTables Configuration
If you set TCP port in aMule to XX and UDP port to YY then you have to set your firewall like this:
iptables -A INPUT -p tcp --dport XX -j ACCEPT
iptables -A INPUT -p udp --dport XX+3 -j ACCEPT
iptables -A INPUT -p udp --dport YY -j ACCEPT
why those two surge of commands are different? Which one I should use?
If you want to use TCP 4811, UDP 4821 (you are not forced to use TCP+10, I just wrote the first value came in my mind :-) ), UDP 4814 (4811+3) you should:
- (assuming that you are using a router) setup your router to forward those ports to your computer (the computer running amule)
- avoid to block those ports in linux firewall so you need to add rules in IPTABLES only if you are blocking ports (e.g. setting the default INPUT and OUTPUT chains to deny/reject)
The reported rules seems OK to me.
One suggestion: to verify if the problem is due to firewall or port forwarding IMHO it's better to start without the firewall and with just the port forwarding set; if everything work correctly then you can add the firewall configuration.
PS:
When I review the iptables, the bottom three lines are what I inserted. And I found the line where I inserted port 4672 displays 'dpt:rfa', I very wonder what that mean.
Try the following command in a shell
cat /etc/service | grep -i 4672
I suspect that you will obtain an output similar to
rfa 4672/tcp #remote file access server
rfa 4672/udp #remote file access server
The file /etc/service contains a list of number of TCP/UDP ports and their description.
iptables simply replace the number with descriptions read from that file.
Assuming that you are not using the RFA server, everything should be OK.
Bye,
Mr Hyde