UPnP support

mbedyn

hello
I got many off this code```
miniupnpd[639]: 3 active incoming HTTP connections

regards
Michael

rsw686

@mbedyn:

hello
I got many off this code```
miniupnpd[639]: 3 active incoming HTTP connections

regards
Michael

It just means multiple machines are hitting it at the same time. WinXP is notorious for doing this to check the status of the Internet Gateway. It should probably not be shown in the syslog. I will talk to the author about this.

mbedyn

It will be very helpfull removing this from logs.. ;) sometimes it's flooding me realy serious

rsw686

@mbedyn:

It will be very helpfull removing this from logs.. ;) sometimes it's flooding me realy serious

If you would like you can use the development version that has this change made. Has some other minor fixes as well.

From the console choose option 8 shell. Type the following commands.

cd /tmp
fetch http://wgnrs.dynalias.com:81/pfsense/miniupnpd/devel/miniupnpd
fetch http://wgnrs.dynalias.com:81/pfsense/miniupnpd/sh-replace-binary.sh
chmod +x sh-replace-binary.sh
./sh-replace-binary.sh miniupnpd

It will return an md5sum that matches A6C7B90607557738E6BFD2354DED1177. Although I might update the binary so the md5sum could change.

If you run into any problems you could restore your previous version with these commands.

cd /tmp
fetch http://pfsense.com/packages/config/miniupnpd/sbin/miniupnpd
fetch http://wgnrs.dynalias.com:81/pfsense/miniupnpd/sh-replace-binary.sh
chmod +x sh-replace-binary.sh
./sh-replace-binary.sh miniupnpd

It will return an md5sum that matches 017A5A5A60E7CE448AEF70B0D1A4DBD2.

mbedyn

thank's
I have reinstalled package according to your instructions…
Will see  ;) I will report soon

regards
Michael :)

rsw686

Heres what you have to look forward to in the next week or so. Access restrictions for miniupnpd have been added for improved security. There are still some bugs that need to be worked out so it should be finished soon. Also miniupnpd is now using a config file instead of multiple command line arguments. Any suggestions are appreciated.

rsw686

I just committed the new version. Either reinstall the package. Or you can use the update script below. If your running a snapshot with miniupnpd already installed you should use the below script. Feedback is greatly appreciated. If there any any issues I want to catch them so this can be included in the next release of pfSense.

The permissions allow port mappings to be made to the specified addresses.

Either use the console terminal or ssh into the box. Select option 8 shell. Enter the following commands. Do not use the webgui command prompt you will find the page just hangs.

Code:
fetch -o - "http://wgnrs.dynalias.com:81/pfsense/miniupnpd/sh-update-miniupnpd.sh" | sh -

bob

I have a cosmetic problem. in the Webgui / Services, miniupnpd shows up twice. I'd like to remove on of the links in the drop down menu… where are the entrys for the menu?

rsw686

@bob:

I have a cosmetic problem. in the Webgui / Services, miniupnpd shows up twice. I'd like to remove on of the links in the drop down menu… where are the entrys for the menu?

You probably had the miniupnpd package installed and then restored your config to a snapshot image. Or installed the package on a snapshot image. If either of these are the case what you can do is backup your config. Remove the following from the installedpackages section. Then restore the config.

<package><name>miniupnpd</name>
      <descr>Emulates Microsoft's Internet Connection Service (ICS). It implements the UPnP Internet
      Gateway Device specification (IGD) and allows UPnP aware clients, such as MSN Messenger to
      work properly from behind a NAT firewall.</descr>
      <website>http://miniupnp.free.fr/</website>
      <category>Network Management</category>
      <maintainer>seth.mos@xs4all.nl ryan@wgnrs.dynu.com</maintainer>
      <version>20061214</version>
      <required_version>1.0</required_version>
      <status>Stable</status>
      <config_file>http://www.pfsense.com/packages/config/miniupnpd/miniupnpd.xml</config_file>
      <configurationfile>miniupnpd.xml</configurationfile></package>

<menu>
<name>MiniUPnPd</name>
<tooltiptext>Set miniupnpd settings such as interfaces to listen on.</tooltiptext>
Services
<url>/status_upnp.php</url>
</menu>

<service><name>miniupnpd</name>
<rcfile>miniupnpd.sh</rcfile>
<executable>miniupnpd</executable></service>

bob

Thanks, why didn't I see this in the first place  ::)
Shame on me.
All looks good now.