Checking bootstrapper version ...

[anj]

Hi!


I have a problem updating my steam ...
When i start steam i see only the message:

Checking bootstrapper version ...

and thats all. This error is new, cause i already get yesterday the a Day of Defeat dedicated server version on my Debian Linux. Due to "not running" i decided to reinstall the hole server ... and now thats not working .... :/

yesterday i had also the problem starting the server with the -autoupdate option, the same error occures ???

Anyone can help ?

BTW: the search option does not work for me in this forum ???

[anj]

ok, i found the error.... but dont understand this ???

ive deleted the steam firewall rules and i works ?!?!
The firewallrules describe only that the STEAM and DOD:S INPUT go through and let ALL OUTPUT from localnetwork through ...

Ive got an DMZ server with letz say the example ip: 200.200.200.100
this server has the firewall and the forwarding rules

My steam server is in a local network 192.168.111.3 (eth1)

Here my rules:

#!/bin/sh

echo "1" > /proc/sys/net/ipv4/ip_forward # Initialisierung des Forwardings

# Flush, delete the rules
################################################################
iptables -F
iptables -F -t nat

iptables -F sperre
iptables -X sperre
iptables -N sperre
iptables -F sperre

# first contact #
#################
iptables -A sperre -i eth1 -s ! 192.168.111.0/255.255.255.0 -j DROP
iptables -A sperre -i eth1 -j ACCEPT
iptables -A sperre -i lo -s 127.0.0.1/255.0.0.0 -j ACCEPT
iptables -A sperre -i eth0 -s 192.168.111.0/255.255.255.0 -j DROP

# acceptstuff #
###############


#DOD:S
iptables -A sperre -p udp --dport 27015 -j ACCEPT
iptables -A sperre -p udp --dport 27020 -j ACCEPT
iptables -A sperre -p tcp --dport 27015 -j ACCEPT

#STEAM
iptables -A sperre -p udp --dport 1200 -j ACCEPT
iptables -A sperre -p udp --dport 27000:27015 -j ACCEPT
iptables -A sperre -p tcp --dport 27030:27039 -j ACCEPT


# Let the responses through the firewall #
##########################################
iptables -A sperre -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -p udp -m state --state ESTABLISHED -j ACCEPT
iptables -A OUTPUT -p udp -m state --state NEW,ESTABLISHED -j ACCEPT

# let nothing else through #
# RFC-conform responses. not the best, cause create responses
#######################################
iptables -A sperre -p tcp -j REJECT --reject-with tcp-reset
iptables -A sperre -p udp -j REJECT --reject-with icmp-port-unreachable


#activate sperre
#####################
iptables -A INPUT -j sperre
iptables -A FORWARD -j sperre
iptables -P INPUT DROP
iptables -P FORWARD DROP
iptables -P OUTPUT ACCEPT
iptables -P OUTPUT ACCEPT -t nat

# NAT #
#######
iptables -A POSTROUTING -t nat -o eth0 -j MASQUERADE

#STEAM
iptables -A PREROUTING -t nat -p udp --dport 1200 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p udp --dport 27000:27015 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p tcp --dport 27030:27039 -j DNAT --to 192.168.111.3

#DoD:S
iptables -A PREROUTING -t nat -p udp --dport 27015 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p udp --dport 27020 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p tcp --dport 27015 -j DNAT --to 192.168.111.3

[anj]

hmm .. this is still confusing me ... now it works BUT i removed some forwarding ports like the outbounding 27011 for steam itself, and the range 27030 to 27039

when these ports are forwarded to my server the autoupdate and the steam connection to the masterservers does not work?!!


Can someone explain this?


Here the Forwarding change:

Code:

#STEAM
iptables -A PREROUTING -t nat -p udp --dport 1200 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p udp --dport 27000:27010 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p udp --dport 27012:27015 -j DNAT --to 192.168.111.3
#iptables -A PREROUTING -t nat -p tcp --dport 27030:27039 -j DNAT --to 192.168.111.3

#DoD:S
iptables -A PREROUTING -t nat -p udp --dport 27015 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p tcp --dport 27015 -j DNAT --to 192.168.111.3
iptables -A PREROUTING -t nat -p udp --dport 27020 -j DNAT --to 192.168.111.3

[anj]

ok ... i found the solution for this problem.
The problem is the firewall:


DONT FORWARD THIS:
[UDP] 1200 (used for Steam's Friends service) (i don't have tested this yet ..)
[UDP] 27000 to 27015 (so that means all ports in between too)
[TCP] 27030 to 27039 (steam connection ports to masterservers and update servers)
=> these are all Steam related ports

THESE ARE THE OUTBOUND PORTS! OPEN THIS IN YOUR FIREWALL TO LET STEAM (also VAC) CONNECT to his SERVERS! But dont forward them to your server as there are no services listening on these ports. I made this mistake and forwarded all ports to my server, after this steam had no connection, cause these ports were routed back to my server


GAMESERVER RELATED PORTS (STANDARD)
FORWARD THIS:

[UDP] 27015 and 27020 (default DS port, also used for HLTV)
[TCP] 27015 (you want to forward this for RCON access)
=> these ports are used by the dedicated server itself


I hope i could help some guys ...

greets!