Does anyone know offhand if mac addresses can be eneterd into Clean
Access using wildcards - anything that begins with 00:04:1F, etc.?
That would sure make life easier - I don't like the administrative
overhead of adding individual mac addresses.

Jeff 

-----Original Message-----
From: Perfigo SecureSmart and CleanMachines Discussion List
[mailto:[log in to unmask]] On Behalf Of Brad Kramer
Sent: Tuesday, October 25, 2005 10:36 AM
To: [log in to unmask]
Subject: Re: [PERFIGO] PS2 - game ports management

Another big game is Final Fantasy XI I know it needs 443 and 80 open....
I was going to do a port based role, but with so many to open, it became
kinda worthless... 
Instead I check all the MAC addresses that people claim are Xbox and PS2
and place them into an allow all role.
The addresses begin as follows:

PS2:
00:04:1F:xx:xx:xx
00:01:4A:xx:xx:xx
08:00:46:xx:xx:xx
(ps2 can also use USB adapters, in this case, we told students that they
need to register that adapter by plugging it into their computer)

X-Box:
00:50:F2:xx:xx:xx
00:0D:*A:xx:xx:xx

This is just a guide- I don't recommend Only using this list- if
something strange comes in, google it to see the manufacturer.

Best of Luck!

-------------
Bradley W. Kramer
Network/Telecom Intern.
Ashland University
(419) 289-5630
[log in to unmask]

On 10/25/05 10:07 AM, "Joyce, Todd N" <[log in to unmask]> wrote:

> We had to change the ps2s to a complete allow all.  The port range was

> so great for Socom that it would have been to labor intensive to add 
> them all.
> 
> todd
> 
> Todd Joyce
> Network Services
> Radford University - The Smart Choice
> [log in to unmask]
> (540) 831-7777
>  
> I would rather be a lonely genius than a popular idiot.
> -----Original Message-----
> From: Perfigo SecureSmart and CleanMachines Discussion List 
> [mailto:[log in to unmask]] On Behalf Of Jason Richardson
> Sent: Tuesday, October 25, 2005 9:53 AM
> To: [log in to unmask]
> Subject: Re: PS2 - game ports management
> 
> Hi all, we are receiving reports this morning that our residence hall 
> users cannot play their PS2 games online and that they have not been 
> able to for some time, supposedly starting when we put in our PS2 
> Console Role well over a month ago (trying not to be frustrated that 
> ResTech is just reporting it to us now :)).  They claim that the 
> reason is that we need to allow port 80 and 443.  Nothing that we have

> seen here or elsewhere indicates that these ports are necessary for 
> PS2 gaming online.  Has anyone else run into this problem recently?
> 
> TIA,
> 
> ---
> Jason Richardson
> Manager, IT Security and Client Development Enterprise Systems Support

> Northern Illinois University
> 
> What does your PS2 Console Role look like?
> Mine:
> 
> Allow TCP   *:*   *:10070
> Allow  TCP  *:*  *:10071
> Allow  TCP  *:*  *:10072
> Allow  TCP  *:*  *:10073
> Allow  TCP  *:*  *:10074
> Allow  TCP  *:*  *:10075
> Allow  TCP  *:*  *:10076
> Allow  TCP  *:*  *:10077
> Allow  TCP  *:*  *:10078
> Allow  TCP  *:*  *:10079
> Allow  TCP  *:*  *:10080
> Allow  UDP  *:*  *:10070
> Allow  TCP  *:*  61.195.48.0 /255.255.240.0 :* Allow  UDP  *:*  
> 202.67.0.0 /255.255.0.0 :* Allow  TCP  *:*  202.67.0.0 /255.255.0.0 :*

> Allow  UDP  *:*  *:9555 Allow  UDP  *:*  *:6000 Allow  UDP  *:*  *:53

> trusted dns server
> 
> Hosts:
> .pol.com   ends   PS2 Service
> .ea.com  ends  EA Games
> playonline.com  ends  PS2 Service
> 
> Simon
>>>> [log in to unmask] 9/8/2005 12:28 PM >>>
> I am also looking for solution without managing hundreds of ports.
At
> the
> beginning of semester, we allow game devices to get online without 
> registration and just opening those gaming ports.  But now, we found 
> managing ports are too labor intensive after seeing all the port 
> requests
> coming in.    Some popular games also use port 80/443, do you just
> open
> those ports or allow those hosts?
> 
>  What is the good solution you have that you and users are both 
> satisfied
> for xbox and ps2?   1. Web page registration  2. walk-in registration
> showing game device at HelpDesk  3.  managing ports /hosts?
> 
> Thank you.
> 
> Wendy Shih
> Kent State University
> 
> 
> It seems that Socom Navy Seals uses UDP port 6000 - 6999.
> 
> Anyone know an easy way to open that many up other than 1 by 1
> 
> That would be a great feature enhancement if anyone is out there from 
> the Cisco Side
> 
> Here is what I found online
> 
> 
> 20. What ports do I need to forward for [insert game title here]?
> SOCOM 1, SOCOM II (2), Twisted Metal Black Online, NFL Gameday:
> Tell the router to allow TCP Ports: 10070 - 10080 and UDP Ports
> 6000-6999 to send data and recieve data.
> Tony Hawk's Pro Skater 4 and Tony Hawk's Underground 2:
> UDP port 5150.
> Frequency and Amplitude:
> TCP Ports 10070 - 10080 and UDP Ports 10070 and you need to allow 
> incoming ICMP Echo Reply.
> Madden NFL 2003 and 2004:
> UDP ports 1791, 1792, 9995 and 9996.
> Medal of Honor: Rising Sun:
> TCP 13505, TCP 443, UDP 3658/3659, UDP 6000/6001 (for voice chat).
> Also, if using a router or a firewall, you MAY want to foreward port 
> 28500 to address 10.14.248.177 Final Fantasy XI:
> TCP 25, 80, 110, 443, and 50000 - 65535 UDP 50000 - 65535 TCP 1024 - 
> 65535 Madden NFL 2006 Ports:
> HTTP: 80 (outbound only)
> HTTPS: 443 (outbound only)
> TCP: 13505, 26300-26399 (outbound only)
> UDP: 1795, 1797 (inbound and outbound) GoldenEye Rogue Agent Ports:
> Ports 21600-21699 are TCP and are outgoing ports for connecting to the

> Lobby server.
> Port 13505 is TCP and is an outgoing port for connecting to the EA 
> Messenger (buddy list) server.
> Ports 3658 & 3659 are UDP and are incoming/outgoing ports for 
> connecting to another user to play a game.
> Port 6000 is UDP and is an incoming/outgoing port for connecting to 
> another user for headset use during a game.
> 
> 
> 
> 
> todd
> 
> Todd Joyce
> Network Services
> Radford University - The Smart Choice
> [log in to unmask]
> (540) 831-7777
> 
> There is no good way to bring a cupcake to work.