RE: [GnomeMeeting-list] Re: quicknet and gnomemeeting questions
- From: Damien Sandras <dsandras seconix com>
- To: gnomemeeting-list gnome org
- Subject: RE: [GnomeMeeting-list] Re: quicknet and gnomemeeting questions
- Date: Tue, 14 Oct 2003 13:28:20 +0200
Le mar 14/10/2003 à 13:23, Rowan Crossley a écrit :
> I've just started using Linux, any tips
>
??
What's your question?
>
> -----Original Message-----
> From: gnomemeeting-list-admin gnome org
> [mailto:gnomemeeting-list-admin gnome org] On Behalf Of Damien Sandras
> Sent: 14 October 2003 12:01
> To: gnomemeeting-list gnome org
> Subject: RE: [GnomeMeeting-list] Re: quicknet and gnomemeeting questions
>
> Hi,
>
> That mail was addressed to Eythan Weg.
>
> Do you have any question?
>
> Le mar 14/10/2003 à 12:35, Rowan Crossley a écrit :
> > What ??
> >
> > -----Original Message-----
> > From: gnomemeeting-list-admin gnome org
> > [mailto:gnomemeeting-list-admin gnome org] On Behalf Of Damien Sandras
> > Sent: 14 October 2003 10:33
> > To: gnomemeeting-list gnome org
> > Subject: Re: [GnomeMeeting-list] Re: quicknet and gnomemeeting
> questions
> >
> > Hello,
> >
> > Please contact noc quicknet com when you are sure that your firewall
> is
> > correctly configured and that the problem is on your side.
> >
> > As I already said in a previous mail, I think that the 1st step is to
> > try normal calls with normal users. That is the only way to make sure
> > everything works.
> >
> > Le mar 14/10/2003 à 04:13, Eythan Weg a écrit :
> > > Damien Sandras <dsandras seconix com> writes:
> > >
> > > > That rule is only if you control outgoing traffic. I will remove
> it
> > from
> > > > the FAQ to not confuse people anymore.
> > > >
> > > > Le lun 13/10/2003 à 23:44, Damien Sandras a écrit :
> > > >> Le lun 13/10/2003 à 19:26, Eythan Weg a écrit :
> > > >>
> > > >> >
> > > >> > $IPTABLES -I POSTROUTING 1 -t nat -o $IN_DEV -d \
> > > >> > $IN_HOST -p udp --dport $TCP_PORT_RANGE -j ACCEPT
> > > >>
> > > >> Ouch, thanks for mentionning this !!!
> > > >> I will update the FAQ now, I'm surprised we have not more users
> > with
> > > >> problems.
> > >
> > > I have tried some more. Here are the relevant
> > > setting given by iptables. I flushed all the
> > > tables and reset the rules just before I start
> > > gnomemeeting. First the filter table:
> > >
> > > -----------------------------
> > > Chain INPUT (policy DROP 0 packets, 0 bytes)
> > > pkts bytes target prot opt in out source
> > destination
> > > 1330 91067 bad_tcp_packets tcp -- any any anywhere
> > anywhere
> > > 1 60 tcp_packets tcp -- eth0 any anywhere
> > anywhere
> > > 22 7667 udp_packets udp -- eth0 any anywhere
> > anywhere
> > > 0 0 DROP all -- eth0 any anywhere
> > BASE-ADDRESS.MCAST.NET/8
> > >
> > > Chain FORWARD (policy DROP 0 packets, 0 bytes)
> > > pkts bytes target prot opt in out source destination
> >
> > > 16 3707 ACCEPT udp -- eth0 any anywhere 192.168.0.2
> > udp dpts:5010:5013
> > > 0 0 ACCEPT tcp -- eth0 any anywhere 192.168.0.2
> > tcp dpt:1720
> > > 486 33628 ACCEPT udp -- eth0 any anywhere 192.168.0.2
> > udp dpts:5000:5003
> > > 19 1827 ACCEPT tcp -- eth0 any anywhere 192.168.0.2
> > tcp dpts:30000:30010
> > >
> > > Chain allowed (3 references)
> > > pkts bytes target prot opt in out source destination
> >
> > > 1 60 ACCEPT tcp -- any any anywhere anywhere
> > tcp flags:SYN,RST,ACK/SYN
> > > 0 0 ACCEPT tcp -- any any anywhere anywhere
> > state RELATED,ESTABLISHED
> > > 0 0 DROP tcp -- any any anywhere anywhere
> >
> > >
> > >
> > > Chain tcp_packets (1 references)
> > > pkts bytes target prot opt in out source destination
> >
> > > 1 60 allowed tcp -- any any anywhere anywhere
> > tcp dpt:smtp
> > > 0 0 allowed tcp -- any any anywhere anywhere
> > tcp dpts:30000:30010
> > > 0 0 allowed tcp -- any any anywhere anywhere
> > tcp dpt:1720
> > >
> > > Chain udp_packets (1 references)
> > > pkts bytes target prot opt in out source destination
> >
> > > 0 0 ACCEPT udp -- any any anywhere anywhere
> > udp dpts:5000:5003
> > > 0 0 ACCEPT udp -- any any anywhere anywhere
> > udp dpts:5010:5013
> > > 22 7667 DROP udp -- eth0 any anywhere
> > 255.255.255.255 udp dpts:bootps:bootpc
> > >
> > >
> > > And here is the relevant nat table.
> > >
> > > Chain PREROUTING (policy ACCEPT 52 packets, 9034 bytes)
> > > pkts bytes target prot opt in out source destination
> >
> > > 1 150 DNAT udp -- eth0 any anywhere anywhere
> > udp dpts:5010:5013 to:192.168.0.2
> > > 0 0 DNAT tcp -- eth0 any anywhere anywhere
> > tcp dpt:1720 to:192.168.0.2
> > > 2 268 DNAT udp -- eth0 any anywhere anywhere
> > udp dpts:5000:5003 to:192.168.0.2
> > > 0 0 DNAT tcp -- eth0 any anywhere anywhere
> > tcp dpts:30000:30010 to:192.168.0.2
> > >
> > > Chain POSTROUTING (policy ACCEPT 2 packets, 142 bytes)
> > > pkts bytes target prot opt in out source destination
> >
> > > 1 150 ACCEPT udp -- any eth1 anywhere 192.168.0.2
> > udp dpts:5010:5013
> > > 0 0 ACCEPT tcp -- any eth1 anywhere 192.168.0.2
> > tcp dpt:1720
> > > 2 268 ACCEPT udp -- any eth1 anywhere 192.168.0.2
> > udp dpts:5000:5003
> > > 0 0 ACCEPT tcp -- any eth1 anywhere 192.168.0.2
> > tcp dpts:30000:30010
> > >
> > > -------------------------
> > > eth0 is the external interface and eth1 is the internal.
> > > GM runs on 192.68.0.2.
> > >
> > > Seems to me something is moving on the 5000:5013
> > > ports. No record of DROPed packets relevant to
> > > our matter. However, it fails, and Microtelco
> > > does not charge. Here is the history as
> > > registered by GM. I call myself but I do not hear
> > > any rings on the other phone. The first call ends
> > > with a busy signal, and the second also but very
> > > quickly with "Remote user cleared the call". What
> > > sense can be made out of this?
> > >
> > >
> > > ------------------------
> > > 0:15:05 Started GnomeMeeting V0.98 for weg
> > >
> > > 20:15:05 Using Quicknet device Internet PhoneJACK-ISA /dev/phone0
> > > 20:15:37 Gatekeeper set to bmac 66 7 159 99
> > > 20:16:15 Phone is off hook
> > > 20:16:35 Calling h323:765497xxxx
> > > 20:16:37 Attaching lid hardware to codec
> > > 20:16:37 Started New Logical Channel...
> > > 20:16:37 Sending G.723.1A(6.3k)-Cisco{hw}
> > > 20:16:37 Enabled silence detection for G.723.1A(6.3k)-Cisco{hw}
> > > 20:16:37 Attaching lid hardware to codec
> > > 20:16:37 Started New Logical Channel...
> > > 20:16:37 Receiving G.723.1A(6.3k)-Cisco{hw}
> > >
> > > Rings and then sounds busy and I put the
> > > handset on the hook.
> > >
> > >
> > > 20:17:02 Phone is on hook
> > > 20:17:02 Trying to stop calling
> > > 20:17:03 Local user cleared the call
> > > 20:19:07 Phone is off hook
> > > 20:19:07 Calling h323:765497xxxx
> > > 20:19:09 Remote user cleared the call
> > > 20:19:13 Phone is on hook
> > >
> > > --------------------
> > >
> > > I use GM 0.98.5, and the nixj driver is cvs
> > > from October 1 or thereabout.
> > >
> > > Sincerely, eythan
> > >
> > > _______________________________________________
> > > GnomeMeeting-list mailing list
> > > GnomeMeeting-list gnome org
> > > http://mail.gnome.org/mailman/listinfo/gnomemeeting-list
--
_ Damien Sandras
(o- GnomeMeeting: http://www.gnomemeeting.org/
//\ FOSDEM 2003: http://www.fosdem.org
v_/_
H.323 phone: callto://ils.seconix.com/dsandras seconix com
[
Date Prev][
Date Next] [
Thread Prev][
Thread Next]
[
Thread Index]
[
Date Index]
[
Author Index]
