[Firehol-devs] new simple service definitions

Andrew Schulman andrex at alumni.utexas.net
Sun Jul 29 05:40:58 BST 2007 

Here is a list of simple service definitions that I use with firehol.  All
of these are well-known services that aren't yet included in firehol.

rtsp (aka Real Media) is broken into two services.  rtsp is suitable for all
clients:  it includes the outgoing control and data connections.  rtsp_data
is the server part, required if a client wants to accept inbound data
connections.  A client that wanted to allow this would have to run

  client rtsp      allow
  server rtsp_data allow

Similarly, torrent (aka Bittorrent) is broken into two services:
torrent_tracker is the control connection, and torrent_stream is the data
connection.  A client that wanted to leech by just downloading could use:

  client torrent_tracker allow
  client torrent_stream  allow

However, because torrents are supposed to be bidirectional, the download
speed will be poor.  To get data, you have to upload too.  For that the
client will have to add

  server torrent_stream allow

Andrew.

###

server_aim_ports="tcp/5190"
client_aim_ports="default"

# Debian apt-cacher apt proxy
server_aptcacher_ports="tcp/3142"
client_aptcacher_ports="default"

server_cddb_ports="tcp/8880"
client_cddb_ports="default"

server_gpgkeys_ports="tcp/11371"
client_gpgkeys_ports="default"

server_lotusnotes_ports="tcp/1352"
client_lotusnotes_ports="default"

server_partimage_ports="tcp/4025"
client_partimage_ports="default"

server_puppet_ports="tcp/8140"
client_puppet_ports="default"

server_pyzor_ports="udp/24441"
client_pyzor_ports="default"

# rtsp control (554,7070) and outbound data (7071) connections
server_rtsp_ports="tcp/554 tcp/7070:7071"
client_rtsp_ports="default"

# rtsp inbound data connections
server_rtsp_data_ports="udp/6970:7170"
client_rtsp_data_ports="default"

server_rsync_ports="tcp/873"
client_rsync_ports="default"

server_svn_ports="tcp/3690"
client_svn_ports="default"

# torrent tracker:
server_torrent_tracker_ports="tcp/6969"
client_torrent_tracker_ports="default"

# torrent streams:
server_torrent_stream_ports="tcp/6881:6889"
client_torrent_stream_ports="default"

server_traceroute_ports="udp/33434:33533"
client_traceroute_ports="default"

More information about the Firehol-devs mailing list