From owner-freebsd-questions@FreeBSD.ORG Fri Jun 5 11:30:14 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A19061065675 for ; Fri, 5 Jun 2009 11:30:14 +0000 (UTC) (envelope-from i.tanusheff@procreditbank.bg) Received: from mail.procreditbank.bg (mail.procreditbank.bg [193.26.216.3]) by mx1.freebsd.org (Postfix) with SMTP id 113BC8FC17 for ; Fri, 5 Jun 2009 11:30:13 +0000 (UTC) (envelope-from i.tanusheff@procreditbank.bg) Received: (qmail 30204 invoked from network); 5 Jun 2009 14:30:12 +0300 Received: from unknown (HELO domino.procreditbank.bg) (10.0.0.15) by 192.168.1.3 with SMTP; 5 Jun 2009 14:30:12 +0300 In-Reply-To: <1244191116.10570.25.camel@rs-unix.roycs.nl> To: Roy Stuivenberg MIME-Version: 1.0 X-Mailer: Lotus Notes Release 7.0.3 September 26, 2007 From: Ivailo Tanusheff Message-ID: Date: Fri, 5 Jun 2009 14:30:11 +0300 X-MIMETrack: Serialize by Router on DOMINO/BULGARIA/PROCREDITBANK(Release 7.0.2FP2|May 14, 2007) at 05.06.2009 14:30:12, Serialize complete at 05.06.2009 14:30:12 Content-Type: text/plain; charset="US-ASCII" X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: freebsd-questions@freebsd.org, owner-freebsd-questions@freebsd.org Subject: Re: ICQ - IPFW X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 05 Jun 2009 11:30:15 -0000 Hi, Generally you have 2 options: 1. To use ICQ over HTTPS connection, which means you should use Proxy server or permit https traffic out of your firewall/nat. 2. To use it directly. As you may use dynamic NAT, i.e. there will be not possible to have incomming connection on port 4000 and it will not harm your network. Regards, Ivailo Tanusheff Deputy Head of IT Department ProCredit Bank (Bulgaria) AD Roy Stuivenberg Sent by: owner-freebsd-questions@freebsd.org 05.06.2009 11:42 To freebsd-questions@freebsd.org cc Subject ICQ - IPFW Hello, I want to start using ICQ (never did before). The question is, I'm looking for a rule in my IPFW script. Running 7.2 stable - ipfw configured in the kernel without nat. Because after some googl'in, i read it's dangerous to just open port 4000 udp. Any suggestions ? Regards, Roy. _______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"