General software, Operating Systems, and Programming discussion.
Everything from software questions, OSes, simple HTML to scripting languages, Perl, PHP, Python, MySQL, VB, C++ etc.
Im aware that routers have a built in firewall and cause issues regarding peer to peer services. The main thing I need to ask is I have no problems with this router above except when using Kazaa and Soulseek.
Currently I have 3 pcs at home, and the router (Linksys BEFSR41) is setup as DHCP. Everything else is default and I am not running proxys etc. (ie standard internet tcpip out of the box). I am running the latest linksys firmware
My first question is how can i solve the fact that kazaa or soulseek won't connect? If its something to do with ports, can someone please let me know which ports to do and the process to do it?(Sorry im a bit clueless with routers) I really don't want to compromise putting one of the pc's out of the firewall zone so if thats possible then BONUS!
Funnily enough, Instant messaging works OK, as does online games. Its just peer to peer I have the problem with.
Kazaa on the other hand uses two types of transport (TCP and UDP). It defaults to using port 1214 for the initial connection but if that is not available it will attempt to use ports 1000 through to 4000. Fine, you say, just block those ports for TCP and UDP. This would work fine except for the fact that it then goes on to use port 80 (HTTP) if those other ports are not available, and that is the real killer. http://www.bandwidthcontroller.com/limi ... width.html
All you have to do is setup a port forwarding. Access router config by typing 192.168.1.1 (normally, if you havent changed it), and admin is usually the PW. Find a application or port forwarding tab and follow below statements.
Application: Kazaa , Start: 1000 to End: 4000, Protocol: Both, IP Addy: IP of comp you wish to grant access, Then just check enable and click Save Settings. You may also have to enable port 80 but that is usually open for HTTP apps.
OK I've had a bit of a think and Im sure one of you can clarify this.
When using ZA Pro firewall, I could connect to file sharing apps without having to config anything. Furthermore in grc.com shieldsup test, i was completely stealth.
SO
If I allow port forwarding now using a router and its firewall, I assume those ports will no longer be stealth and hence pose a slight security risk as they would respond to port scans?
If the above is correct, then isn't it safer then, to completely put the PC (I have 3) that I am filesharing on into the DMZ Zone, (yes i know now its got no firewall protection).....BUT THEN running it with ZA pro.
The end result would be a machine that has no probs with file sharing apps and is COMPLETELY stealth, compared to the option of opening ports using the router firewall and having a FEW ports open?
In essence you can only DMZ one IP. So your other 2 computers should not be in any harms way. I wouldnt recommend it though. Forwarding a few ports to a single IP is better by far. ZA can and should monitor those ports whether they are open or closed off by the router. There are roughly 65000 ports in most MS OS's and when you consider that to the 3000 you just forwarded the percentage of port scans is a lot higher if you DMZ an IP. Two firewalls= better than One. One thing I would check though is if ZA maybe causing this conflict. I use basically the same router, but with Norton Firewall. I have more config issues with Norton than I do my router. I have yet to forward a port, and I have about 200 programs/ports allowed through Norton.
