Re: incoming connection port 80

From: Erik <erikgast@xxxxxxxxx>
Date: Tue, 4 Mar 2008 11:43:52 -0800 (PST)

On 4 mrt, 20:35, "Peter Duniho" <NpOeStPe...@xxxxxxxxxxxxxxxx> wrote:

On Tue, 04 Mar 2008 10:55:05 -0800, Mark Space <marksp...@xxxxxxxxxxxxxx>
wrote:

Erik wrote:

I'm wondering how to accept connections (socket) if you are behind a
router. Skype and
uTorrent can handle this (by using port 80 or 443). How do these
programs manage to accept
connections if ports (accept port 80 and 443) are blocked?
Thanks
Erik

uTorrent is just a Bit Torrent client.

Bit Torrent connects out to a server, it does not accept incoming
connections. Its incoming connections are not low number ports (80 or
443) and have to be specifically enabled on the router/firewall or it
won't work well.

If it doesn't accept incoming connections, then why do its incoming
connections "have to be specifically enabled"? :)

To the original poster: an application that has a listening TCP socket
does indeed require that the router _somehow_ be configured to forward
connection requests to that socket. The two most common techniques
involve manually configuring the router or using the "universal
plug-and-play" protocol (by which a network application can obtain
specific information from the router and/or configure the router to do
specific forwarding).

Many routers support "port triggering", by which the router watches
outbound traffic and if it notes a network client using some particular
port (either locally or, more commonly, in the remote address), it
automatically enables forwarding to that client temporarily on some other
specified port or ports (which may include the original outbound port).
Specifics on this vary from router to router.

You may also want to Google "nat hole punching". It's more reliable when
used with UDP than TCP (different techniques are used with each, and doing
it using TCP requires lower-level access than sockets normally give you),
and in either case it's not 100% reliable as it depends on undocumented,
arbitrary behavior on the part of the router. But depending on how
important it is to solve the problem, it's something you might consider.

Note that if the router has literally "blocked" the ports, then the answer
is "you don't". Typically, the ports are only "blocked" in that the
router doesn't know who to forward the traffic to. This is addressable as
described above. But if someone's actually configured the router to not
allow traffic on those ports to pass, then the only thing that will allow
traffic on those ports through is to reconfigure the router so that it's
no longer blocking traffic on those ports.

Finally note that a "router" is not the same as a "firewall". Sometimes
the two functions are combined into a single device, but a firewall's job
is specifically to block traffic. Either it's blocking traffic on
specific ports or it's not. If it's not, you have nothing to do, and if
it is, nothing you can do short of changing the firewall configuration is
going to unblock the ports. Obviously, changing the firewall
configuration is not something that would be done automatically by a
software client without any user intervention. Otherwise it wouldn't be
much of a firewall. :)

Pete

Thanks for your answer :).

What I'm trying to do is to create a Java applet which can receive an
incoming
connection, so a connection is enstablished between a program and the
applet (which
must be able to accept the connection). Is this possible (to bypass
the router (not the firewall!)) and if it's possible, how?

Thanks

Erik
.

Follow-Ups:
- Re: incoming connection port 80
  - From: Christian
- Re: incoming connection port 80
  - From: Peter Duniho

References:
- incoming connection port 80
  - From: Erik
- Re: incoming connection port 80
  - From: Mark Space
- Re: incoming connection port 80
  - From: Peter Duniho

Prev by Date: Re: how to overcome "java.lang.OutOfMemory" Error
Next by Date: Re: incoming connection port 80
Previous by thread: Re: incoming connection port 80
Next by thread: Re: incoming connection port 80
Index(es):
- Date
- Thread

Relevant Pages

Re: Still cant connect to RWW or OWA remotely
... Public IP address for the web server certificate, ... try taking the router out of the equation... ... the router configuration is the problem. ... called Efficient tech support to have them verify that the ports I ...
(microsoft.public.windows.server.sbs)
Re: Net Meeting and Ports
... I had TCPView open to try ... a View of the Porst & Endpoints, with the state of the Connections etc. ... which other Ports & Protocols to use. ... > I opened up a range of ports on the router and tried calling Aries ...
(uk.people.silversurfers)
Re: expose internal network to the outside world
... > be able to ssh into both of them form the outside world. ... > where external requests on particular ports are forwarded by the router ... > Some applications require multiple connections, such as Internet gaming, ...
(Debian-User)
Re: VPN questions
... in with the main router being set to the 0.x address. ... Once I made the change for that, i've had the tunnel up for the last ... connections but the tunnel would drop after 30sec to a minute or so. ... Configuration as follows: ...
(microsoft.public.windowsxp.work_remotely)
Re: 2 pc network - cant see host files from pc 2 on pc 1
... Assuming that you have firewall protection via your internet router try ... workgroup because it will be needed for the network to work correctly. ... see if you can access TCP ports 139 and 445 on computer one of which at ... permissions. ...
(microsoft.public.windowsxp.security_admin)