Jump to content
TrinityCore

wow ports iptables


jason51
 Share

Recommended Posts

You can use my config (which is working) for iptables:

# ALLOW WORLD OF WARCRAFT SERVERS
# Authserver
iptables -A INPUT -p tcp --dport 3724 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p tcp --sport 3724 -m state --state ESTABLISHED -j ACCEPT

# server 1
iptables -A INPUT -p tcp --dport 8085 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p tcp --sport 8085 -m state --state ESTABLISHED -j ACCEPT

# server 2
iptables -A INPUT -p tcp --dport 8086 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p tcp --sport 8086 -m state --state ESTABLISHED -j ACCEPT

Link to comment
Share on other sites

After that, be sure to save the rules so in a reboot it is already done (in gentoo for example it is /etc/init.d/iptables save).

Also I suggest to set the default policy to DROP, it is harder to configure, but way more secure. With:

iptables -P INPUT DROP

iptables -P OUTPUT DROP

Those two lines will drop all packets not matched by any rule (EVEN the output packets)

EDIT: I posted the iptables rules as it is mentioned in the topic. This will only open the ports, but not do NAT.

If you use a router, you should redirect also the ports to the machine running TC

Edited by StormByte
Link to comment
Share on other sites

You don't need a reject all rule, and that is also not good, as if this rule is before any other, all will be rejected despite further rules.

To set reject all, it is better to change the policy, as I stated before, with -P command.

Also, I suggest you to delete all rules and redo them from scratch

Link to comment
Share on other sites

 Share

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...