[icecast] Firewall issue with Icecast

[Steve Meuse]

Greetings,

I've recently setup Icecast2 and Ices2 from the sources in the CVS repository.
Everything seems to be working fine with the exception of a firewall issue
that I'm having. 

Icecast appears to use a TCP connection, for session setup, that is initiated
by the client. Icecast then sources a TCP connection back to the client for
the stream itself. This basically how non-passive-mode FTP works. This creates
a serious problem for anyone using a stateful firewall that blocks incoming
TCP SYN, like I am (not by my own choice).

Here is the output from netstat: (edited to protect the guilty)

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State      
tcp        0      0 0.0.0.0:8000            0.0.0.0:*               LISTEN      
tcp        0      0 127.0.0.1:8000          127.0.0.1:32769         ESTABLISHED 
tcp        0    333 195.160.32.13:8000      69.33.150.171:2985      ESTABLISHED

195.160.32.13 is the machine running Icecast, 69.33.150.171 the client which
is running Winamp.

The server and the streamer are on the same machine. 

Is there anyway to configure Icecast to let the client initiate the stream 
connection, like passive-mode FTP? I've looked at what documentation that I've 
been able to get my hands on, but haven't seen anything. Is there hope or am
I simply missing something?

-Steve

<p>
--
Progress (n.):  The process through which the Internet has evolved from smart
people in front of dumb terminals to dumb people in front of smart terminals.
--
--- >8 ----
List archives:  http://www.xiph.org/archives/
icecast project homepage: http://www.icecast.org/
To unsubscribe from this list, send a message to 'icecast-request at xiph.org'
containing only the word 'unsubscribe' in the body.  No subject is needed.
Unsubscribe messages sent to the list will be ignored/filtered.