login to your netscreen
go to: Objects > Services > Custom
Click new
And create custom service and list all ports you will have to use for bit torrent
Name this: bit torrent OR take a other descriptive name
TCP src port: 1-65535, dst port: 56969-56969
TCP src port: 1-65535, dst port: 56881-56881
UDP src port: 1-65535, dst port: 56881-56881
TCP src port: 1-65535, dst port: 6885-6892
UDP src port: 1-65535, dst port: 6885-6892
Hit OK
then go to network > interfaces > and then edit adsl1
then VIP > press “new VIP service”
virtual ip; (your outside ip that is assigned automatically by your ISP, this should be filled in automatically)
map to service; ( pick the custom service that you just made, bit torrent)
map to IP; (the box that you are running your service on, mine is 192.168.0.8)
hit OK
then go to
wizards > policy
pick
untrust to trust then next
Destination Address:
pick VIP(untrust) under address book
next
service
pick the service that you defined in the custom section
action permit
next
enable nat- don’t do anything here just click next
enable logging check that off and Enable count of traffic passed via the policy (this is so you can check to see the traffic- turn this off after you are happy with everything and it is all working)
next
Authentication Options
click none
next
Schedule:
none
next
finish
** The next step must be done. Whitout this forwarding will not work! **
You have to telnet into the netscreen:
in windows go to start > run > then type in:
telnet 192.168.0.1 (Where 192.168.0.1 is the address of YOUR 5gt)
then enter in the user name and password
and then type this command:
set vip multi-port
then it will return you to:
ns5gt->
then type:
reset
then type:
y
and again:
y
In reset …
close the black box.
and you are good to go, in a couple of minutes! It will take 3-5 minutes for everything to start working. Fire up the apps and then log in to the 5gt and go reports > policies > and click on the grid thing to see the traffic. If this is not working after 10-15 mins try the telnet commands again and if still not working update firmware and clear all policies, VIP’s, and custom services.
About the author /
Mustafa Kaya
Threatpost | The first stop for security news
- New Magniber Ransomware Targets South Korea, Asia Pacific 21 Ekim 2017Researchers identified a new ransomware family called Magniber that uniquely only targets users in South Korea and the Asia Pacific regions.
- ‘IOTroop’ Botnet Could Dwarf Mirai in Size and Devastation, Says Researcher 20 Ekim 2017Malware dubbed IOTroop that researchers say is "worse than Mirai" has already infected one million businesses worldwide.
- BoundHook Attack Exploits Intel Skylake MPX Feature 18 Ekim 2017A new attack method takes advantage a feature in Intel’s Skylake microprocessor allowing for post-intrusion application hooking and stealth manipulation of applications.
- Factorization Flaw in TPM Chips Makes Attacks on RSA Private Keys Feasible 16 Ekim 2017A flawed Infineon Technology chipset left HP, Lenovo and Microsoft devices open to what is called a 'practical factorization attack,' in which an attacker computes the private part of an RSA key.
- Hyatt Hit By Credit Card Breach, Again 13 Ekim 2017Hyatt said its payment systems have been breached, exposing credit card data from 41 hotels in 11 countries between March and July this year.
- Legacy Office Feature Used In Novel Document Attacks 13 Ekim 2017A forgotten feature in Microsoft Office allows attackers to bypass antivirus scanners and pull off document-based attacks to install malware.
Leave a reply