Shorewall problem [Solved]

Discussions Regarding Software

Moderator: Moderators

Shorewall problem [Solved]

Postby Floor19 » Wed Apr 29, 2009 21:32

Hi there,

A sabayon 4.1 user for 2 weeks now and after hours of googling and tweaking i finally made it to the forum to ask for help.

I set up a Ushare upnp server and shorewall firewall and want to connect from my xbox360 to my sabayon pc on port 49200.

My shorewall rule for Ushare is:
ACCEPT net $FW TCP 49200
ACCEPT net $FW UDP 49200

But this does not work. If I use the shorewall clear command. (This will allow access from all hosts without restriction.) I can connect from my xbox to the ushare server without a problem.

Hopefully someone can give me the correct rule because sabayon is going to be a definitely stay!

Thanks in advance.

F

(Mods: if this is posted in the wrong forum please move it :))
Last edited by Floor19 on Sun May 03, 2009 8:11, edited 1 time in total.
Floor19
Baby Hen
 
Posts: 16
Joined: Wed Apr 29, 2009 21:15

Re: Shorewall problem

Postby kodiakmax » Wed Apr 29, 2009 23:04

I'm not quite sure what you want to do but if you want a setup like this:
xbox --> cable --> pc --> wireless --> router --> internet
or maybe like this:
xbox --> cable --> server --> cable--> pc
or maybe
xbox -->cable --> pc
or maybe
xbox --> wireless --> router --> pc

we would need more info on your network topology to help troubleshoot why your xbox network is not working. Or was everything working before you installed the firewall? And if your behind a nat router you don't really need software firewall at all.
If you check the wiki, use the search function and google you can find the answer to most of your questions.

Remember to mark your thread [Solved] if your issue is fixed.
kodiakmax
Advanced Hen
 
Posts: 278
Joined: Thu Oct 16, 2008 23:46

Re: Shorewall problem

Postby Floor19 » Wed Apr 29, 2009 23:15

Did not expect this question :wink: but the setup is:

xbox --> router --> wireless --> pc (with ushare server)

F
Floor19
Baby Hen
 
Posts: 16
Joined: Wed Apr 29, 2009 21:15

Re: Shorewall problem

Postby kodiakmax » Wed Apr 29, 2009 23:41

Does it work without the shorewall?
I am also assuming your ushare.conf is set up correctly?

Example of the uShare config file:

Code: Select all
# /etc/ushare.conf
# uShare UPnP Friendly Name (default is 'uShare').
USHARE_NAME=uShare

# Interface to listen to (default is eth0).
# Ex : USHARE_IFACE=eth1
USHARE_IFACE=eth0

# Port to listen to
USHARE_PORT=49153

# Port to listen for Telnet connections
USHARE_TELNET_PORT=

# Directories to be shared (space or CSV list).
# Ex: USHARE_DIR=/dir1,/dir2
USHARE_DIR=/home/myusername/mymediafolder

# Use to override what happens when iconv fails to parse a file name.
USHARE_OVERRIDE_ICONV_ERR=yes

# Enable Web interface (yes/no)
ENABLE_WEB=yes

# Enable Telnet control interface (yes/no)
ENABLE_TELNET=no

# Use XboX 360 compatibility mode (yes/no)
ENABLE_XBOX=yes

# Use DLNA profile (yes/no)
# This is needed for PlayStation3 to work (among other devices)
ENABLE_DLNA=no

“USHARE_NAME” is the display name of your share.
“USHARE_IFACE” is the network interface uShare should listen to.
“USHARE_PORT” this is the port the uShare server listens on. Make sure this is set to 49153.
“USHARE_DIR” is the full path of the folder with your media.
“ENABLE_WEB” to turns on the web interface. Make sure this is set to ‘yes’.
“ENABLE_XBOX” is what enables Xbox 360 compatibility. Make sure it’s set to ‘yes’.

3. After finished editing the configuration file, save the file.

4. Edit the following file by issuing command below:
sudo gedit /etc/init.d/ushare

Find the following lines:

start-stop-daemon --start --quiet --background --oknodo \
--make-pidfile --pidfile $PIDFILE \
--exec $DAEMON -- $USHARE_OPTIONS

And change them to:

start-stop-daemon --start --quiet --background --oknodo \
--make-pidfile --pidfile $PIDFILE \
--exec $DAEMON -- $USHARE_OPTIONS --xbox

5. Restart uShare
sudo /etc/init.d/ushare stop
sudo /etc/init.d/ushare start
If you check the wiki, use the search function and google you can find the answer to most of your questions.

Remember to mark your thread [Solved] if your issue is fixed.
kodiakmax
Advanced Hen
 
Posts: 278
Joined: Thu Oct 16, 2008 23:46

Re: Shorewall problem

Postby Floor19 » Thu Apr 30, 2009 8:44

Yes ushare is set up correctly and works without shorewall.

If I allow access from all zones with the clear command it works but with the firewall on it does not, so I expect that I do not have the correct shorewall rule for port 49200 but cannot figure it out.

F
Floor19
Baby Hen
 
Posts: 16
Joined: Wed Apr 29, 2009 21:15

Re: Shorewall problem

Postby kodiakmax » Thu Apr 30, 2009 23:41

You might need to open port 1900 (SSDP, Simple Service Discovery Protocol) as well.
Some people have had luck opening ports 49200-49202 instead of just 49200 also.
You could also try changing the $FW to loc:your_local_ip_address
Try running starting ushare from the command line as well and see if you gives you any hints

I don't use ushare or shorewall myself so just kind of brainstorming here.
Why are you using shorewall anyway since you are behind a NAT router?
If you check the wiki, use the search function and google you can find the answer to most of your questions.

Remember to mark your thread [Solved] if your issue is fixed.
kodiakmax
Advanced Hen
 
Posts: 278
Joined: Thu Oct 16, 2008 23:46

Re: Shorewall problem

Postby Floor19 » Sun May 03, 2009 8:10

Opening port 1900 did the trick.

Using a firewall because i still think i need one :wink:

Thanks!

F
Floor19
Baby Hen
 
Posts: 16
Joined: Wed Apr 29, 2009 21:15


Return to Software in General

Who is online

Users browsing this forum: No registered users and 4 guests