ASL 3.218 with eMule > always Low-ID

m3rc · #1 (**permalink**) 02-01-2004, 01:45 PM

Hello,

I have asl 3.218. I've got some problems with emule (v.0.30e, no mod!). I always get a low-id. I've already read a lot of threads here and changed lots of settings, but without any results.

These are my current settings:

Definitions|Services:
Name: eMule_TCP_UDP; Protocol: tcp/udp; S-Port: 1024:65535; D-Port:4661:4672.

Packet Filter|Rules:
From: Any; Service: eMule_TCP_UDP; To: DSL_Interface; Action: Allow.

Network|NAT/Masquerading:
Name: eMule; Match parameters: Any -> DLS_Intercace_ / eMule_TCP_UDP; SRC translation: MASQ__DSL;
DST translation: MyPC / eMule_TCP_UDP.

I've configured a network with 4 PCs: 3 PCs are downstairs. And my PC is on the first floor.

And I've defined these Interfaces:
DSL: PPP over Ethernet connection (dynamic),
Network_Up: Standard ethernet interface (192.168.1.1:255.255.255.0; static),
Network_Down: Standard ethernet interface (192.168.2.1:255.255.255.0; static).

Besides I've defined my PC (1st floor) as "MyPC" with the address 192.168.1.50 and 255.255.255.255.
And of course the options 'ICMP-forward' und 'ICMP on firewall' are activated!

No matter what I try I always get a low-id!
I have no other firewall applications, like nis oder zonealarm... [img]/images/graemlins/wink.gif[/img]

Can anybody help me, please?
m3rc

bagira · #2 (**permalink**) 02-01-2004, 08:39 PM

Hi m3rc,
to get an "high" id, you have to share some files with the others. Have a loolk in your kernel log, and search for drooped packets to your external interface. (port 4661,4662). You have to define a DNAT rule to share your files with other people. Google for emule ports will help you to define the right DNAT rule.
Greetings Bagira

swoop · #3 (**permalink**) 02-04-2004, 02:11 PM

I've done as followed:

Services:
Emule - 4663 tcp/udp 1024:65535 4663
Emule - server tcp 1024:65535 4711
Emule - TCP tcp 1024:65535 4662
Emule - UDP udp 1024:65535 4672

Done the DNAT (Network | NAT/Masq.), so the traffic is directed to the internal PC.

Allowed the traffic in Packet filter.

When this is done I've got a high ID at all time. I run ASL 4.020.

techno.kid · #4 (**permalink**) 02-04-2004, 07:49 PM

So IMHO a HighID does not depend on shared files...
Looks more like some wrong configuration.
So, just try this one:
Network|NAT/Masquerading:
Name: eMule; Match parameters: Any -> DLS_Intercace_ / eMule_TCP_UDP; SRC translation: None;
DST translation: MyPC / eMule_TCP_UDP.

Hope that helps.

techno.kid

Tetz · #5 (**permalink**) 02-07-2004, 08:41 AM

In order to get a high-id, you need to set up DNAT to the pc running eMule. The ASL doesn't know what pc to send the incoming packets to, because your pc didn't initiate the connection. If you set up DNAT to the PC, the incoming packets will find their way to where they're supposed to go and you'll be good.

I don't use eMule because I'd have to DNAT to my pc to get a high-id.

m3rc · #6 (**permalink**) 02-15-2004, 12:34 PM

so, now it works fine: i've got a high-id! [img]/images/graemlins/smile.gif[/img]

i only changed this option: "Source Address" from "Any" to "No Change". Then ALL connections were allowed to pass the eMule UDP and TCP ports. [img]/images/graemlins/smile.gif[/img]

.cya
merc