[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: WatchGuard Firebox II and ICQ

To: firewalls@Lists.GNAC.NET
Subject: Re: WatchGuard Firebox II and ICQ
From: Hook <hooker@opera.iinet.net.au>
Date: Tue, 18 Apr 2000 06:46:36 +0800

    [ The following text is in the "iso-8859-1" character set. ]
    [ Your display is set for the "US-ASCII" character set.  ]
    [ Some characters may be displayed incorrectly. ]

I've found exactly that several times, and failed to find any real guidance
from the ICQ web site (not surprisingly perhaps).

The ICQ client opens random ports when it starts up (and increments the port
numbers for a while if the initial connection fails).  If you find an
acceptable solution I'd be interested to hear it, I've ended up by opening
all access to destination port 4000 in places where ICQ is a *must*, but
it's hardly a good solution.

Paul


> > Hi,
> > Has anyone had any experience configuring ICQ with the
> > Firebox II? I've
> > opened up UDP port 4000 and TCP port 2109, but we are still
> > having problems
> > connecting the ICQ client.
> >
> >
> That's a known problem. It works sometimes. The problem is that the ICQ
> client uses dynamic ports and the FW blocks those ports.
> For what security concerns, it's not such a good idea to open those ports,
> but that's your decision.
>
> Erwin
>
> -
> [To unsubscribe, send mail to majordomo@lists.gnac.net with
> "unsubscribe firewalls" in the body of the message.]
>

-
[To unsubscribe, send mail to majordomo@lists.gnac.net with
"unsubscribe firewalls" in the body of the message.]

Prev by Date: re: Off Topic: Upper Management decision making
Next by Date: Re: CheckPoint FW4.1 Nat question.
Prev by thread: RE: WatchGuard Firebox II and ICQ
Next by thread: Logs
Index(es):
- Date
- Thread