File transfer with aim and icq not working with checkpoint policy

[bmcquik]

Hey thanks for reading this i just got into the firewall biz and not that experienced at it but darn good all i cant figure out is why cant i send and recieve files with ICQ or AIM ive been trouble shooting this for quite some time please help... Thank you...

Brandon

 

[aduplicate]

Hi,

Firstly you need to find wot ports r used and wot direction they need to go in.

 

[CosmicV]

Most likely, your doing a NAT hide translation with your internal networks (If your like most companies). When your ICQ agent reports back to the client (or server) that you want to start a file transfer, the client with create a NEW and seperate connection to feed the data back through. That means since your NATing, the other person is trying to connect to your firewall's external interface. The firewall has no way to know to connect this particular connection back to you. The solution is to do a static NAT and give the internal machine an external address and allow the ports needed although this is HIGHLY not recomended. If you do choose to allow a 95/98 box connect to the internet that is in your internal network, dont be surprised when its used by a hacker to wreck havoc later.

 

[sdibias]

Hello-

I personally block all AOL or AIM traffic through my firewall (more productive) this way

If you want open to port 5190 for AOL.

Port 5190/tcp is the port AOL does everything on, its even registered with IANA.

sdibias