[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipfilter
Subject:    Re: net2phone proxy?
From:       lainestump () rcn ! com (Laine Stump)
Date:       2001-04-29 5:11:50
[Download RAW message or body]

robert koh <robert_kw@yahoo.com> writes:

> hi,
> does anybody work on the net2phone proxy for the
> ipfilter? Thanks.

For *outgoing* calls from a single machine inside the perimeter, all I
had to do was add a line like this to ipnat.conf (tlp1 is my external
interface, and 10.0.0.20 is the internal machine I was running
net2phone on):

  rdr tlp1 0/0 port 6801 -> 10.0.0.20 port 6801 udp

then add the following rule to ipf.conf:

  # net2phone
  pass in proto udp from any to any port = 6801 keep state

I already have a keep state rule that allows all outgoing UDP packets
and their responses:

   pass out quick proto udp from any to any keep state

It turns out that Net2Phone uses udp ports 6801 and 7275.

Again, this only works for a single internal host, and doesn't work
for incoming calls - it looks like a proxy to allow incoming clals
would be fairly straightforward (there's a UDP packet that contains
your IP address in ASCII, and that would need to be rewritten), but I
didn't have a need for it.

In the end, I gave up on Net2Phone because I was turned off by the way
they did business - for starters, I was told that they would charge me
1 cent/minute, but my first calls were charged 10 cents/minute
instead, and that was set as my rate until I complained. Additionally,
when I signed up, they sent me a "free" headset (I was not given the
option of refusing this "gift") for which I was "only charged shipping
and handling". Although the headset arrived in a bubble-pack envelope
with a USPS meter stamp that showed 99 cents, they charged me $9.95
for it. To top it off, the headset was a cheap piece of crap (which I
wouldn't have minded if they didn't charge $10 for it).

[prev in list] [next in list] [prev in thread] [next in thread]