People,
Just yesterday I installed a Smoothwall appliance. Previously, on the old integrated SPI firewall on our old router box, Folding@Home traffic was able to get in and out no problem.
This afternoon, I noticed that the console client couldn't send completed work results up. So, I added in rule to allow traffic out from port 8080 which solved the issue. Trouble is, the damn Smoothwall seems to be stopping work coming IN from the assignment server.
Any ideas what inbound rule settings I need to use to stay secure but let FAH traffic through?
Cheers,
zooman
Smoothwall issue
Moderators: Site Moderators, FAHC Science Team
-
manfromthezoo
- Posts: 3
- Joined: Mon May 19, 2008 9:42 am
- Contact:
-
John Naylor
- Posts: 357
- Joined: Mon Dec 03, 2007 4:36 pm
- Hardware configuration: Q9450 OC @ 3.2GHz (Win7 Home Premium) - SMP2
E7500 OC @ 3.66GHz (Windows Home Server) - SMP2
i5-3750k @ 3.8GHz (Win7 Pro) - SMP2 - Location: University of Birmingham, UK
Re: Smoothwall issue
You could open port 8080 just for the IPs of your folding computers... or if you have lots of time, open it just for the IPs on the server status page, but be aware that those can change quite often.
Folding whatever I'm sent since March 2006 
Beta testing since October 2006. www.FAH-Addict.net Administrator since August 2009.
Beta testing since October 2006. www.FAH-Addict.net Administrator since August 2009.-
toTOW
- Site Moderator
- Posts: 6394
- Joined: Sun Dec 02, 2007 10:38 am
- Location: Bordeaux, France
- Contact:
Re: Smoothwall issue
Does this help : viewtopic.php?p=80665#p80665 ?
Folding@Home beta tester since 2002. Folding Forum moderator since July 2008.
-
manfromthezoo
- Posts: 3
- Joined: Mon May 19, 2008 9:42 am
- Contact:
Re: Smoothwall issue
Thank you for the feedback guys, both are interesting.
John, I was thinking of creating such a rule actually. I just did, by setting a static IP assignment to our Ubuntu folding box and setting a rule to port forward 8080 to it. This seems to have got things working....
Im very interested in the problem raised by toTOW though, right now though I'm sure how that would affect me - wasn't the issue fixed server side?
John, I was thinking of creating such a rule actually. I just did, by setting a static IP assignment to our Ubuntu folding box and setting a rule to port forward 8080 to it. This seems to have got things working....
Im very interested in the problem raised by toTOW though, right now though I'm sure how that would affect me - wasn't the issue fixed server side?
-
John Naylor
- Posts: 357
- Joined: Mon Dec 03, 2007 4:36 pm
- Hardware configuration: Q9450 OC @ 3.2GHz (Win7 Home Premium) - SMP2
E7500 OC @ 3.66GHz (Windows Home Server) - SMP2
i5-3750k @ 3.8GHz (Win7 Pro) - SMP2 - Location: University of Birmingham, UK
Re: Smoothwall issue
There were two seperate fixes - the server side fix and disabling TCP Window Scaling. I think toTOW wishes for you to try the latter and see if that works.
Folding whatever I'm sent since March 2006 Beta testing since October 2006. www.FAH-Addict.net Administrator since August 2009.
Beta testing since October 2006. www.FAH-Addict.net Administrator since August 2009.-
manfromthezoo
- Posts: 3
- Joined: Mon May 19, 2008 9:42 am
- Contact:
Re: Smoothwall issue
Just to update you guys (and anyone searching for a similar issue), disabling TCP Window Scaling was not effective. For now, I am continuing with the solution above, having assigned my folding box a reserved IP in the Smoothwall and forwarding port 8080 to it. For those about to do the same, you need to remember to allow the packets out obviously. A quick and easy way to do this (given that you trust the box of course) is the add the machine to the 'Allow allowed' list in Outgoing on your Smoothie.