Technical data
3. Base configuration
Template Protocol Port(s)
proxmox tcp 5900
proxmox tcp 3128
rdp tcp 3389
rsync tcp 873
samba tcp 139
samba tcp 445
samba udp 137-138
sip tcp/udp 5060-5061
smtp tcp 25
snmp tcp/udp 161
socks tcp 1080
squid tcp 3128
ssh tcp 22
ssmtp tcp 465
submission tcp 587
svn tcp 3690
syslog udp 514
teamspeak tcp 14534
teamspeak tcp 51234
teamspeak udp 8767
telmond tcp 5001
telnet tcp 23
teredo udp 3544
tftp udp 69
time tcp/udp 37
traceroute udp 33404-33464
vdr tcp 6419
vnc tcp 5900
whois tcp 43
xbl tcp/udp 3074
xbl udp 88
xmppclient tcp 5222
xmppserver tcp 5269
Table 3.8.: Templates Included With fli4l
The Syntax for this kind of packet filter rules is
tmpl:<Name of the service> <Constraint> <Action>
<Constraint> allows everything mentioned at 3.10.2. Possible values for <Action> are listed
and described in 3.10.1.
Some more examples should clarify the process. At first let’s have a look at PF_PREROUTING:
PF_PREROUTING_N='2'
PF_PREROUTING_1='tmpl:xbl dynamic DNAT:@xbox'
PF_PREROUTING_2='tmpl:https dynamic DNAT:192.168.193.250'
The rule PF_PREROUTING_1 supplies the Xbox with everything necessary for Xbox Live. By
the use of tmpl:xbl all ports and protocols used for Xbox Live will be forwarded to the xbox.
50