network firewall issue

[studnothin]

i actually live on a college campus, so i have the benefit of using a T1 LAN connection, but the problem is, our network comes equiped with it's own server firewall, as i would imagine most campus networks probably do.

anyway, i'm trying to open some ports for a game (allows me to host), and i've completely turned off my personal firewall (windows), but it's apparent that the server firewall is still blocking some neccessary ports. if anyone knows anything about configuring server firewalls, or knows a good source, please help, i would be eternally grateful.

 

[RebateMonger]

There are, no doubt, many folks here that know about configuring firewalls. But is it going to do you any good? Is the College going to let you re-configure their firewall so you can host some games?

 

[Atheus]

I do not think they will let you reconfigure their firewall to run a game server. You could always ask though.

 

[InlineFive]

Highly unlikely, unnecessary security risk.

 

[WiseOldDude]

DOH! that's why they have a firewall

 

[studnothin]

well, they certainly don't have to know that's what i'm doing. a lot of ceg students and cs students are constantly experimenting with open ports and stuff like that. i doubt i'd be the first to ask them, i just want to know what i need to have them open exactly.

 

[Atheus]

Originally posted by: studnothin
well, they certainly don't have to know that's what i'm doing.

But if they wanted to find out, they could quite easily. It's nowhere near as simple to hide incoming traffic as it is to hide outgoing. In fact it's probably impossible without using an external proxy server.

a lot of ceg students and cs students are constantly experimenting with open ports and stuff like that.

Really? Into the main network? Because when I was building firewalls at school they gave me an entirely seperate lab to test in, there's no way they would let me mess with the routers... and I'd have the same policy if I was a uni admin.

i doubt i'd be the first to ask them, i just want to know what i need to have them open exactly.

OK, well, firstly you must have a static routable IP, i.e. NOT 192.168.x.x or 172.x.x.x or anything like that. If you do not have a routable IP you will have to get them to NAT everything to you at the border router. Good luck with that.

If you do have a real routable address, they would simply have to remove restrictions on your particular IP (it will be block all incoming right now) to allow the ports required by the server, but they won't want to as your machine could become a stepping stone to the rest of the campus. It depends on their setup just how insecure this would be.