Azareus

[AmIdYfReAk]

No, no, you need to forward the Range FROM the minimum and maxamum port to ABC, as in From 6688 to 6999 to it.

i'm not to fimular with that software, is there a way to give it server rights? ( Ie, Full access ) ?>?

[+JuggerNaut+]

Drum, drum. you're making this much too complicated.

[DRuM]

I'm sure I am juggy


But I think I get it now! Ok, here's a screenshot of pc-cillin exception screen. If I choose 'all ports' instead of 'specified port,' wil that sort it and it'll see all the ports I choose in ABC? Or do I keep 'specified ports' and type in the range I put in ABC, eg, 6000-8000 in that one box?

[DRuM]

Ok, I've done this, this is right. I chose a random port range.

[dzjepp]

Why don't you pick any protocol just to be sure? I think bittorrent also uses udp. Allow it to use outgoing connections too. And for azureus, you should enable java.exe access to the net too.

[DRuM]

Btw dzjepp, that port of yours didn't work for me I was getting around 1kb/sec. I did specify java for the azareus ones dzjepp. This is the guide I followed. There is nothing there about outgoing. So I made one incoming for azareus TCP and one incoming for azareus UDP. I also made one for ABC TCP and one for ABC UDP, but directing ABC to the abc.exe not the java.

http://azureus.aelitis.com/wiki/index.php/Firewalling

PC CILLIN 2005 Users
To open the port for Azureus to be get incoming connections Go to

NETWORK SECURITY
PERSONAL FIREWALL
Highlight your connection (denoted with a green dot) and select EDIT
Select EXCEPTION LIST tab
Select ADD
Type any description (e.g. Azureus)
Select specified application and enter the path to javaw.exe (i.e. C:\Program Files\Java\j2re1.5.0_04\bin\javaw.exe)
on connection select INCOMING
on action select ALLOW
on protocol select TCP
select SPECIFIED PORTS and type 6881 in the box (please also read here why you should consider changing the 6881 standard port)
ensure IP setting is on ALL IP ADDRESSES
press OK to return to PERSONAL FIREWALL PROFILE window, and press OK on this window as well
press apply
Now in the Azureus window go to tools configuration wizard, when you get to the NAT / SERVER PORT section and press the TEST button you should get TESTING PORT 6881 (or the port you chose) ...OK!
repeat the above steps, but on protocol select UDP

[+JuggerNaut+]

the warez is strong in this one...

[dzjepp]

Naaaah, drum is using his broadband connection to stream music videos from yahoo, download legal songs from mp3.com, and download the heavy linux distros and such, ya know the things that the majority of broadband internet users do.

[+JuggerNaut+]

Naaaah, drum is using his broadband connection to stream music videos from yahoo, download legal songs from mp3.com, and download the heavy linux distros and such, ya know the things that the majority of broadband internet users do.

it's tr00. you can be a BT user like me and not warez a single thing.

[DRuM]

[Foo]

Drum, on that dialog simply select 'All Ports'. Then select 'TCP/UDP'.

When you do this, it will allow the program 'ABC' to use ANY PORT IT NEEDS TO for outbound traffic. This will not be a security risk since you trust the program 'ABC'

Also after that, create another rule which is identical but has 'outgoing' selected as well.

These 2 rules together will give ABC all the access it could possibly need.

BTW regarding firewalls: hardware routers/firewalls and software firewalls give 2 entirely different levels of protection. In a corporate environment, usually the hardware firewalls are sophisticated and the demands are low, so they dont use software firewalls.. however at home it would be foolish not to use one.

[+JuggerNaut+]

so you're saying that it's foolish to have a hardware router/firewall at home without a software firewall? did i read that right?

[Foo]

Depends.

At home, having a software firewall is more significant that having a hardware firewall. With a software firewall you can allow specific applications and deny everything else. With a hardware firewall you get packet level security meaning an open port is an open port... it doesn't distinguish what application is using it and often it won't even distinguish the type of traffic flowing across (TCP, UDP) without being an expensive firewall.

if you're talking about a router/NAT setup as a means to security, I would argue that if you own a software firewall and understand the concepts, NAT is unneccesary.

If you're competent with networking then you can lock down a hardware firewall quite well. However being asked by your PC 'do you want to allow Winamp to access the internet?' speaks much more to the average PC user.

[+JuggerNaut+]

Depends.

At home, having a software firewall is more significant that having a hardware firewall. With a software firewall you can allow specific applications and deny everything else. With a hardware firewall you get packet level security meaning an open port is an open port... it doesn't distinguish what application is using it and often it won't even distinguish the type of traffic flowing across (TCP, UDP) without being an expensive firewall.

if you're talking about a router/NAT setup as a means to security, I would argue that if you own a software firewall and understand the concepts, NAT is unneccesary.

If you're competent with networking then you can lock down a hardware firewall quite well. However being asked by your PC 'do you want to allow Winamp to access the internet?' speaks much more to the average PC user.

unless you have spyware trying to access the net, you don't have to worry about it. if you have apps that access the net then you should either:

a) read the EULA next time

or

b) use a different application

[Foo]

I have several applications that I need to run, but don't want to access the internet. 2 good examples are RealPlayer and Quicktime.

Both of these can communicate HTTP traffic over port 80. Something which, using a hardware firewall, gets through OK. Software firewall will distinguish between these applications and Firefox/Internet Explorer.

[+JuggerNaut+]

Media Player classic would be a good alternative then.

iirc, in Quicktime, unchecking the auto update checker and the "show hot picks" remedies that.

[DRuM]

Drum, on that dialog simply select 'All Ports'. Then select 'TCP/UDP'.

When you do this, it will allow the program 'ABC' to use ANY PORT IT NEEDS TO for outbound traffic. This will not be a security risk since you trust the program 'ABC'

Also after that, create another rule which is identical but has 'outgoing' selected as well.

These 2 rules together will give ABC all the access it could possibly need.

BTW regarding firewalls: hardware routers/firewalls and software firewalls give 2 entirely different levels of protection. In a corporate environment, usually the hardware firewalls are sophisticated and the demands are low, so they dont use software firewalls.. however at home it would be foolish not to use one.

Cool, I've done that, thanks. That's a lot simpler.
I've done the same for azareus and emule. Is that ok even though they only use one port?

[Foo]

Yes, that's usually the permission I give to any program I want to access the net at all. It's odd that your firewall won't let you make a single rule for outgoing and incoming on a single program.

For info: Almost all programs will only ever use 2 protocols: TCP and UDP. TCP has a load of error-checking features and such. It's slow, but reliable and used for things like web browsing. UDP on the other hand doesn't have much error checking and doesn't verify what it sends. This is used where speed matters over accuracy I.E for a game of quake). Some apps will never need to use UDP (it's unlikely, for example, that firefox would need it). Anyway, useless and mildly innacurate lesson over

Thanks for the advice Jugg.

[DRuM]

Thank you foo

By the way, do you ever use emule? I can find loads of files, (erm, all educational things you understand ), but it never downloads anything and if does it's really slow, like around 2kb. Everything is set fine, port test fine, upload and download speeds fine. Files are on auto or high priority but always 'waiting' even when there are sources there. Any idea or is emule just crap?

[+JuggerNaut+]

Thank you foo

By the way, do you ever use emule? I can find loads of files, (erm, all educational things you understand ), but it never downloads anything and if does it's really slow, like around 2kb. Everything is set fine, port test fine, upload and download speeds fine. Files are on auto or high priority but always 'waiting' even when there are sources there. Any idea or is emule just crap?

BT's pushing it, but talking about Emule is over the top.

[DRuM]

Thank you foo

By the way, do you ever use emule? I can find loads of files, (erm, all educational things you understand ), but it never downloads anything and if does it's really slow, like around 2kb. Everything is set fine, port test fine, upload and download speeds fine. Files are on auto or high priority but always 'waiting' even when there are sources there. Any idea or is emule just crap?

BT's pushing it, but talking about Emule is over the top.

Well they're all legal programs aren't they?

[+JuggerNaut+]

for now....

look what happened to kazaa recently.

[^misantropia^]

I think bittorrent also uses udp.

BT uses TCP but some trackers allow announces over UDP.

[Foo]

Thank you foo

By the way, do you ever use emule? I can find loads of files, (erm, all educational things you understand ), but it never downloads anything and if does it's really slow, like around 2kb. Everything is set fine, port test fine, upload and download speeds fine. Files are on auto or high priority but always 'waiting' even when there are sources there. Any idea or is emule just crap?

If you share a lot of files and leave emule running for a few weeks solid you build up a higher credibility with other edonkey network users and your download speeds increase greatly.

Having said that, it still takes a long time to get many files. The network isn't about speed it's more about being able to get almost anything given enough time.

[DRuM]

Cool, thanks for the info foo. Foo is the man!

juggy is not ( j/k)