From echo link.
Firewall Solutions
"I see the list of stations, but every time I try to connect to one,
I get a "Connect
attempt failed" message after 30 seconds. What's the problem?"
Most likely, a "firewall" problem is preventing your computer from
receiving messages
from other stations over the Internet. This is a very common issue.
The solution depends on what kind of hardware and software you are
using for your
Internet connection. Unfortunately, many different hardware and
software products
may be involved, so it is not possible to document every
solution. However, the
most common situations are listed below.
Basic Information
EchoLink requires that your router or firewall allow inbound and
outbound UDP to
destination ports 5198 and 5199, and outbound TCP to port
5200. Source ports are
dynamically assigned. If you are using a home-network router, you
will also need
to configure the router to "forward" UDP ports 5198 and 5199 to the
PC on which EchoLink
is running.
This can be summarized as:
Allow UDP (source port any, destination ports 5198-5199) from Internet to PC
Allow UDP (source port any, destination ports 5198-5199) from PC to Internet
Allow TCP (source port any, destination port 5200) from PC to Internet
The information above applies to every situation, regardless of the
type of equipment
and software you are using. If the information below does not help
you solve the
problem, please consult your equipment's documentation, or contact
the manufacturer
for support, and provide them with the information above.
Microsoft Windows XP
Windows XP comes with a built-in "firewall" feature that helps
protect your computer
from undesired connections from the Internet. In order to use
EchoLink, you will
need to adjust some settings. The software must be configured to
allow TCP port
5200 to pass outbound, and UDP ports 5198 and 5199 to pass inbound
and outbound.
For more information, see
Windows XP Firewall Setup.
Windows Internet Connection Sharing
Several versions of Microsoft Windows support a utility called
Internet Connection
Sharing (ICS). This utility allows several different computers on a
local network
to access the Internet over a single connection. The software must
be configured
to "forward" UDP ports 5198 and 5199 to the computer on which
EchoLink is installed,
which might not be the same computer on which ICS is running.
A useful utility for setting up Internet Connection Sharing is
ICS Configuration
.
Home-Network Routers
A "router", as used in a home network, is a device which allows
several different
computers to share a single connection to the Internet. A router is
frequently used
in conjunction with a cable modem or DSL connection. Popular models
are manufactured
by Linksys, D-Link, and SMC.
We do not have configuration information for any routers other than
those listed
below.
If your model is not listed below, please consult the
manufacturer's documentation
for details.
Linksys
1. Using a Web browser, bring up your router's configuration
page. By default, the
URL is 192.168.1.1, the user name is blank, and the password is "admin".
2. Click the Advanced tab.
3. Click the Forwarding tab.
4. In the first pair of Service Port Range boxes along the top, enter
5198 and 5199.
5. On the same line, under Protocol, choose UDP.
6. On the same line, enter the IP address of the computer running EchoLink.
7. Click Apply to save changes.
D-Link
DI-604
1. Using a Web browser, bring up your router's configuration
page. By default, the
URL is 192.168.0.1, the user name is "admin", and the password is blank.
2. Click the Advanced tab.
3. Click the Enable button.
4. After Name, enter "EchoLink 5198"
5. After Private IP, enter the IP address of the computer running EchoLink.
6. After Protocol Type, choose UDP.
7. After Private Port, enter 5198.
8. After Public Port, enter 5198.
9. Choose "Always".
10. Click "Apply".
11. Repeat steps 4 through 10, but use the name "EchoLink 5199", and
use 5199 as the
Private Port and Public Port.
3Com
Office Connect 612
(courtesy of IW0GLC)
Enter the following three commands, substituting your computer's
local IP address
for <ip>
:
set vc EchoLink nat_options enable
add nat udp vc EchoLink public_port 5198 private_address <ip> private_port 5198
add nat udp vc EchoLink public_port 5199 private_address <ip> private_port 5199
SMC
Routers
(courtesy of N1AHH)
click NAT
click SPECIAL APPLICATIONS
on line one under TRIGGER PORT type:
5198, TRIGGER TYPE UDP PUBLIC PORT 5198 PUBLIC TYPE UDP ENABLED
on line two under TRIGGER PORT type:
5199, TRIGGER TYPE UDP PUBLIC PORT 5199 PUBLIC TYPE UDP ENABLED
Drop down to the bottom of the page and select apply. Exit the router
set-up and
start EchoLink. It should function normally.
If you have any firmware version before v1.05, contact SMC technical support at
www.smc.com
and ask for the latest firmware update. The latest on the web page
as of 3 nov
02 is ver 1.03, however if asked, they will e-mail you version 1.05
which appears
to solve a problem with intermittent disconnects.
When you receive the firmware update, install it according to the
manual's directions.
Basically, this means to go to the ADVANCED section and then TOOLS,
then FIRMWARE
UPGRADE. Follow the directions. The router will perform a hard
reset when done
and you will have to re-configure using the SET-UP WIZARD.
Other Routers
In general, the router must be configured to "forward" UDP ports 5198
and 5199 to
the computer on which EchoLink is installed. Forwarding is sometimes
found as an
advanced configuration option on your router's setup screens. If
forwarding is not
available, you may need to configure your EchoLink computer as a DMZ,
which effectively
opens all ports to the Internet. If this becomes necessary, some
sort of network
security software such as Windows XP, BlackIce, or ZoneAlarm is recommended.
ZoneAlarm
ZoneAlarm
is a brand of security software which blocks certain "ports" from
being used, unless
you configure it to allow them. If you use ZoneAlarm, you must
configure it to allow
EchoLink.exe to use TCP port 5200 outbound, and UDP ports 5198 and
5199 inbound and
outbound.
For more information, see
Zone Alarm Configuration.
Apple Macintosh
Although EchoLink is designed to run only under Microsoft Windows,
some Macintosh
users have successfully run it in a Windows "virtual machine", using the
VirtualPC
product from Connectix. However, due to EchoLink's UDP port
requirements, VirtualPC
must be configured to use an IP address separate from the Mac
itself. This can be
easily done if your home network uses a router. Configure the router
as described
above to forward EchoLink's UDP ports to the second IP address. See
the VirtualPC
documentation for configuration details.
Linux IPTables
For complete details, see the
sample configuration file
generously provided by Jason, KB1IMD.
AVM KEN Proxy Software
AVM KEN is a German product, available in ISDN and DSL versions. For
complete details,
see the
configuration information
generously provided by Jochen, DG2IAQ.
Satellite Internet Service Providers
Many users are successfully running EchoLink using an Internet
connection provided
through a satellite dish. Although the latency (time delay) is
usually higher with
this type of system, it rarely affects EchoLink since EchoLink does
not use end-to-end
acknowledgements of voice packets. However, some service providers
use a router
which does network-address translation (NAT), which often cannot be
configured by
the customer. Check with your satellite ISP to see if this is the
case, and whether
a different tier of service is available which will avoid it.
For more information, see:
StarBand FAQ Broadband Glossary
MagicSat FAQ
--
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.407 / Virus Database: 268.12.9/458 - Release Date: 9/27/2006
|
