Prev: loading modules automatically: automating modprobes
Next: HOW2 implement a daemon?
From: Lew Pitcher on 8 Dec 2009 16:48
On December 8, 2009 16:21, in comp.os.linux.misc, geir56(a)hotmail.com wrote:

> Baron skrev:
>> AFAIAA You shouldn't have to open any ports for outgoing ! The firewall
>> should let anything out unless you have specifically blocked outgoing
>> traffic.
>>
>
> We have now, and it stopped working :-)
>
> I just wanted to try to find out which port..

As a TCP "client" application (that is, an application that opens a
socket(), but does not bind() it to a specific port), the OS will give wget
a random local port, usually in the 32768 - 61000 range. Note that the
system configuration can alter this range by recording new start and stop
values in /proc/sys/net/ipv4/ip_local_port_range.

> Can I set some logging or verbose mode to actually see which port wget
> is trying to use in my case..?

Possibly. I don't /think/ that wget will tell you that sort of information,
but you /can/ set it to verbose and look for yourself.

--
Lew Pitcher
Master Codewright & JOAT-in-training | Registered Linux User #112576
Me: http://pitcher.digitalfreehold.ca/ | Just Linux: http://justlinux.ca/
---------- Slackware - Because I know what I'm doing. ------


From: Geir Holmavatn on 8 Dec 2009 16:56
Lew Pitcher skreiv:
> As a TCP "client" application (that is, an application that opens a
> socket(), but does not bind() it to a specific port), the OS will give wget
> a random local port, usually in the 32768 - 61000 range. Note that the
> system configuration can alter this range by recording new start and stop
> values in /proc/sys/net/ipv4/ip_local_port_range.

Will altering settings here have any undesireable side-effects?

geir
From: notbob on 8 Dec 2009 17:11
On 2009-12-08, Geir Holmavatn <geir56(a)hotmail.com> wrote:
>
> I just wanted to try to find out which port..

Again, depends on the protocol. If you go for an ftp site, it's port
21, if you used http, it's 80. If your firewall is set up properly,
it should do stateful inspection and allow outgoing connections
automatically and like returning data should be allowed in. I use
Arno's firewall and do nothing to establish wget connection to servers
on the cloud. If you want to allow connections to your servers, then
you need to open ports.

nb
From: Greg Russell on 9 Dec 2009 02:23
"Geir Holmavatn" <geir56(a)hotmail.com> wrote in message
news:7o7ubqF3onoggU1(a)mid.individual.net...

>> AFAIAA You shouldn't have to open any ports for outgoing ! The firewall
>> should let anything out unless you have specifically blocked outgoing
>> traffic.
>
> We have now, and it stopped working :-)

Thar's because you made it work according to your instructions.

If you want to block outbound traffic, the logic is something you need to
carefully consider. To be honest, you gaven't yet stated your needs
adequately in order to gain the appropriate advice.


First  |  Prev  | 
Pages: 1 2
Prev: loading modules automatically: automating modprobes
Next: HOW2 implement a daemon?