login to your netscreen
go to: Objects > Services > Custom
Click new
And create custom service and list all ports you will have to use for bit torrent
Name this: bit torrent OR take a other descriptive name
TCP src port: 1-65535, dst port: 56969-56969
TCP src port: 1-65535, dst port: 56881-56881
UDP src port: 1-65535, dst port: 56881-56881
TCP src port: 1-65535, dst port: 6885-6892
UDP src port: 1-65535, dst port: 6885-6892
Hit OK
then go to network > interfaces > and then edit adsl1
then VIP > press “new VIP service”
virtual ip; (your outside ip that is assigned automatically by your ISP, this should be filled in automatically)
map to service; ( pick the custom service that you just made, bit torrent)
map to IP; (the box that you are running your service on, mine is 192.168.0.8)
hit OK
then go to
wizards > policy
pick
untrust to trust then next
Destination Address:
pick VIP(untrust) under address book
next
service
pick the service that you defined in the custom section
action permit
next
enable nat- don’t do anything here just click next
enable logging check that off and Enable count of traffic passed via the policy (this is so you can check to see the traffic- turn this off after you are happy with everything and it is all working)
next
Authentication Options
click none
next
Schedule:
none
next
finish
** The next step must be done. Whitout this forwarding will not work! **
You have to telnet into the netscreen:
in windows go to start > run > then type in:
telnet 192.168.0.1 (Where 192.168.0.1 is the address of YOUR 5gt)
then enter in the user name and password
and then type this command:
set vip multi-port
then it will return you to:
ns5gt->
then type:
reset
then type:
y
and again:
y
In reset …
close the black box.
and you are good to go, in a couple of minutes! It will take 3-5 minutes for everything to start working. Fire up the apps and then log in to the 5gt and go reports > policies > and click on the grid thing to see the traffic. If this is not working after 10-15 mins try the telnet commands again and if still not working update firmware and clear all policies, VIP’s, and custom services.
About the author /
Mustafa Kaya
Hacks – Threatpost
- SecOps Teams Wrestle with Manual Processes, HR Gaps 18 Eylül 2020Enterprise security teams are "drowning in alerts."
- APT41 Operatives Indicted as Sophisticated Hacking Activity Continues 17 Eylül 2020Five alleged members of the China-linked advanced threat group and two associates have been indicted by a Federal grand jury, on dozens of charges.
- DoJ Indicts Two Hackers for Defacing Websites with Pro-Iran Messages 16 Eylül 2020The two hackers allegedly hacked more than 50 websites hosted in the U.S. and vandalized them with pro-Iran messages.
- Data Breaches Exposes Vets, COVID-19 Patients 15 Eylül 2020Social engineering and employee mistakes lead to breach Veteran's Administration and the National Health Service.
- Feds Warn Nation-State Hackers are Actively Exploiting Unpatched Microsoft Exchange, F5, VPN Bugs 14 Eylül 2020Monday's CISA advisory is a staunch reminder for federal government and private sector entities to apply patches for flaws in F5 BIG-IP devices, Citrix VPNs, Pulse Secure VPNs and Microsoft Exchange servers.
- Magecart Attack Impacts More Than 10K Online Shoppers 14 Eylül 2020Close to 2,000 e-commerce sites were infected over the weekend with a payment-card skimmer, maybe the result of a zero-day exploit.
Leave a reply