[icecast] Firewall issue with Icecast

Steve Meuse swave at mara.org
Fri Feb 14 19:12:33 UTC 2003


I've recently setup Icecast2 and Ices2 from the sources in the CVS repository.
Everything seems to be working fine with the exception of a firewall issue
that I'm having. 

Icecast appears to use a TCP connection, for session setup, that is initiated
by the client. Icecast then sources a TCP connection back to the client for
the stream itself. This basically how non-passive-mode FTP works. This creates
a serious problem for anyone using a stateful firewall that blocks incoming
TCP SYN, like I am (not by my own choice).

Here is the output from netstat: (edited to protect the guilty)

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State      
tcp        0      0  *               LISTEN      
tcp        0      0         ESTABLISHED 
tcp        0    333      ESTABLISHED is the machine running Icecast, the client which
is running Winamp.

The server and the streamer are on the same machine. 

Is there anyway to configure Icecast to let the client initiate the stream 
connection, like passive-mode FTP? I've looked at what documentation that I've 
been able to get my hands on, but haven't seen anything. Is there hope or am
I simply missing something?


Progress (n.):  The process through which the Internet has evolved from smart
people in front of dumb terminals to dumb people in front of smart terminals.
--- >8 ----
List archives:  http://www.xiph.org/archives/
icecast project homepage: http://www.icecast.org/
To unsubscribe from this list, send a message to 'icecast-request at xiph.org'
containing only the word 'unsubscribe' in the body.  No subject is needed.
Unsubscribe messages sent to the list will be ignored/filtered.

More information about the Icecast mailing list