Hello,
I currently have my packet filter rules set at internal network/ any/any/allow. It is a small network envirenment and everyone on the network is trusted. Is this safe? The reason I ask is I was having trouble configuring Astaro to access some game servers we frequent using anything but internal network/any/any/allow.

I had mine setup that way here at the house for a while without issues..

I have mine set that way with no problems on the outbound... and works well with UBI and others but I do have several inbound issues .... I am trying to get teamspeak working on port 8767 and no luck....

Hi,
on problems with gameservers look on your livelog while trying to play on an other PC maybe you see that the gameserver trys to connect to you but he may try to reach you on your external address so you must forward this to your game PC.

firebear

Here are some of the game "services" I have setup:

Name Protocol S-Port/Client D-Port/Server
ASE Client tcp/udp 1024:65535 27243:27245
ASE Server tcp/udp 1024:65535 14690
BattleNet TCP tcp 1024:65535 6112
BattleNet UDP udp 1024:65535 6112
BF1942 udp 1024:65535 14550:14570
BF1942 Port Range udp 1024:65535 23000:23009
DirectX Net01 tcp 1024:65535 47624
DirectX Net02 udp 1024:65535 6073
DirectX Net03 tcp/udp 1024:65535 2300:2400
Gamespy Master List tcp 1024:65535 28900
Gamespy Master UDP udp 1024:65535 27900
Half Life udp 1024:65535 27010:27020
IL2 tcp/udp 1024:65535 21000
Teamspeak udp 1024:65535 8767
Valve Steam TCP tcp 1024:65535 27030:27039
Valve Steam UDP udp 1024:65535 1200

These are then lumped in a "service group" and a rule is created for that group - lan/games/any/allow

Cheers.