Community discussions

MikroTik App
 
chlange
just joined
Topic Author
Posts: 6
Joined: Wed Feb 16, 2005 7:46 pm

MNS Messenger --- Can not connect at all! (the rest works)

Wed Feb 16, 2005 8:10 pm

I can not find out why MSN Messenger can not connect. I have looked at the forum but did not find any solution for my problem.

If user and pass are not correct the messenger tells me that there is a problem with the authentication, but if user and pass are correct it just wont connect.

Here is a copy of firewall rules...

INPUT
[admin@TheBoneRouter] ip firewall rule input> pr
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; Drop invalid connection packets
connection-state=invalid action=drop

1 ;;; Allow established connections
connection-state=established action=accept

2 ;;; Allow related connections
connection-state=related action=accept

3 ;;; Allow UDP connections
protocol=udp action=accept

4 ;;; Allow ICMP messages
protocol=icmp action=accept

5 ;;; Allow access from 'trusted' network
src-address=192.168.0.0/24 action=accept

6 ;;; Allow access from 'trusted' network
src-address=192.168.2.0/24 action=accept

7 ;;; Allow access from 'trusted' network
src-address=192.168.3.0/24 action=accept

8 ;;; Allow access from 'trusted' network
src-address=192.168.1.0/24 action=accept

9 ;;; Allow access from 'trusted' network
src-address=192.168.4.0/24 action=accept

10 ;;; Reject and log everything else
action=drop log=yes


FORWARD
[admin@TheBoneRouter] ip firewall rule forward> pr
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; Drop invalid connection packets
connection-state=invalid action=drop

1 ;;; Allow established connections
connection-state=established action=accept

2 ;;; Allow related connections
connection-state=related action=accept

3 ;;; Allow ICMP ping packets
out-interface=pppoe-out1 protocol=icmp action=accept

4 ;;; Allow outgoing connections from the server at 192.168.x.x
src-address=192.168.2.100/32 out-interface=pppoe-out1 action=accept

5 src-address=192.168.2.160/32 out-interface=pppoe-out1 action=accept

6 src-address=192.168.0.180/32 out-interface=pppoe-out1 action=accept

7 src-address=192.168.0.181/32 out-interface=pppoe-out1 action=accept

8 src-address=192.168.0.182/32 out-interface=pppoe-out1 action=accept

9 src-address=192.168.0.190/32 out-interface=pppoe-out1 action=accept

10 src-address=192.168.0.191/32 out-interface=pppoe-out1 action=accept

11 src-address=192.168.0.150/32 out-interface=pppoe-out1 action=accept

12 src-address=192.168.0.141/32 out-interface=pppoe-out1 action=accept

13 src-address=192.168.0.140/32 out-interface=pppoe-out1 action=accept

14 src-address=192.168.2.101/32 out-interface=pppoe-out1 action=accept

15 src-address=192.168.2.102/32 out-interface=pppoe-out1 action=accept

16 ;;; Drop and log everything else
out-interface=pppoe-out1 action=drop log=yes


src-nat
[admin@TheBoneRouter] ip firewall src-nat> pr
Flags: X - disabled, I - invalid, D - dynamic
0 out-interface=pppoe-out1 action=masquerade


dst-nat
[admin@TheBoneRouter] ip firewall dst-nat> pr
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; Web PROXY port 3x
in-interface=ether1 dst-address=!192.168.0.1/32:80 protocol=tcp action=redirect
to-dst-port=8080

1 in-interface=ether2 dst-address=!192.168.2.1/32:80 protocol=tcp action=redirect to-dst-port=8080

2 in-interface=ether3 dst-address=!192.168.4.1/32:80 protocol=tcp action=redirect to-dst-port=8080

3 ;;; Porti Chris TCP
in-interface=pppoe-out1 dst-address=:22000-22001 protocol=tcp action=nat
to-dst-address=192.168.0.140

4 ;;; Porti Chris UDP
in-interface=pppoe-out1 dst-address=:22000-22001 protocol=udp action=nat
to-dst-address=192.168.0.140

5 ;;; Porti Logar TCP
in-interface=pppoe-out1 dst-address=:7000-7003 protocol=tcp action=nat
to-dst-address=192.168.0.180

6 ;;; Porti Logar UDP
in-interface=pppoe-out1 dst-address=:7000-7003 protocol=udp action=nat
to-dst-address=192.168.0.180

7 ;;; Porti dusi TCP
in-interface=pppoe-out1 dst-address=:3000-3004 protocol=tcp action=nat
to-dst-address=192.168.2.100

8 ;;; Porti dusi UDP
in-interface=pppoe-out1 dst-address=:3000-3004 protocol=udp action=nat
to-dst-address=192.168.2.100

9 D dst-address=213.250.60.61/32:20204 protocol=udp action=nat to-dst-address=192.168.2.101
to-dst-port=11907

10 D dst-address=213.250.60.61/32:49630 protocol=tcp action=nat to-dst-address=192.168.2.101
to-dst-port=7180

11 D dst-address=193.77.133.93/32:59619 protocol=tcp action=nat to-dst-address=192.168.2.102
to-dst-port=8486


I would realy need som help on that

Thanks
Christian :(
[/b]
 
User avatar
YazzY
Member Candidate
Member Candidate
Posts: 140
Joined: Fri May 28, 2004 3:26 pm
Location: Norway, Østfold
Contact:

Thu Feb 17, 2005 2:28 am

Check the MRU and MTU values for your pppoe connections.
Also try to add a passthrough mangle rule for TCP with TCP Options set to syn.
Set TCP MSS to 1360.
 
chlange
just joined
Topic Author
Posts: 6
Joined: Wed Feb 16, 2005 7:46 pm

Messenger

Thu Feb 17, 2005 5:08 pm

Thank you very much!!! :D

I did not change the PPPoE MTU and MRU but the extra mangle worked.



Regards

Christian
 
User avatar
YazzY
Member Candidate
Member Candidate
Posts: 140
Joined: Fri May 28, 2004 3:26 pm
Location: Norway, Østfold
Contact:

Thu Feb 17, 2005 10:06 pm

You're welcome. Glad to be of help.
Did I remember to mention I charge a beer per advice? :)
 
chlange
just joined
Topic Author
Posts: 6
Joined: Wed Feb 16, 2005 7:46 pm

Fri Feb 18, 2005 1:25 pm

If you will be passing Slovenia some day send me a mail and we can defiantly go for a beer or 55.

Christian

langech@email.si

Who is online

Users browsing this forum: dave864, harvey, sindy and 75 guests