SRCDS Steam group


Firewall problem, iptables
#1
I try to run a server like this:

./srcds_run -console -game cstrike +map de_dust +maxplayers 16 -port 27016

I have opened ports like this:
# HL CS & CSS related ports
iptables -A INPUT -p udp -m udp --dport 1200 -j ACCEPT
iptables -A INPUT -p udp -m udp --dport 27000:27015 -j ACCEPT
iptables -A INPUT -p tcp -m tcp --dport 27030:27039 -j ACCEPT
iptables -A INPUT -p udp -m udp --dport 27020 -j ACCEPT
iptables -A INPUT -p tcp -m tcp --dport 27015:27020 -j ACCEPT

But, I can not see it. If I try to open all like this
iptables -P INPUT ACCEPT

Then I can see the server.
Reply
#2
If you launch the game on port 27016 and not the default 27015 then you need to also open 27016. Change the 1st 27015 to 27016.

Here is the CS:S related portion of my iptables. I've never seen them specify incoming or outgoing to I open both:

-A RH-Lokkit-0-50-INPUT -p udp -m udp --dport 27000:27015 -d 0/0 -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p udp -m udp --sport 27000:27015 -d 0/0 -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 27030:27039 --syn -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --sport 27030:27039 --syn -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --dport 27015 --syn -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --sport 27015 --syn -j ACCEPT

Note: I launch on 27015.
Also Note: the 27015 entry for TCP is only needed for rcon I believe.



Snewo
Reply
#3
argh; i have iptables also.
i think it is the reason i cannot see my server.
Though im not sure; could either of you elaborate on the above points, where i should put commands etc?
Gona chuck them into command line now and see what i come out with.
cheers

Reply
#4
If you suspect iptables is the problem then turn it off and see if the problem is magically fixed.

/etc/init.d/iptables stop (On Fedora Core 3 at least)

Run it as root, but don't forget to change back to the normal user before launching the server.


Snewo
Beer - it\'s what\'s for dinner.
Reply
#5
iptables -A INPUT -p udp -i $ETH0_INT --dport 27016 -d $ETH3_IP -j ACCEPT
iptables -A INPUT -p tcp -i $ETH0_INT --dport 27015 -d $ETH3_IP -j ACCEPT

note $ETH0_INT and $ETH3_IP, change these before attempting to use. this is all you need to run your server on port 27016

values are set to:
$ETH0_INT=eth0
$ETH3_IP=209.82.178.101

there are some prerouting rules you can use to make your server accept on multiple ports
Reply


Forum Jump:


Users browsing this thread: 3 Guest(s)