Search the Community

Showing results for tags 'firewall'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Resilio Sync
    • Sync General Discussion
    • Sync Troubleshooting
    • Sync for NAS (Network Attached Storage)
    • Sync Stories
    • Developers
    • Feature Requests

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...


  • Start





Website URL







Found 21 results

  1. Has anyone had success with Dell SonicWall and opening up the right ports for Resilio? IT Department is having trouble configuring correctly. I set a standard listening port for our devices, but our devices behind the SonicWALL are still using the relay servers. It is likely user error on our end. This may not be enough information, but I can ask for additional details if there are any expert firewall users/staff reading this. I am told we have an NSA-2600 with the December 2016 firmware.
  2. Hi, it could be nice to divide this page into multiple use case. for example the most normal usecase which would be the configuration of direct connection and then the usecase where even the in-> out traffic are limited. Because in your whole list, we don't know if this is the app who is calling for example port 4000 and 3000 which would implicated that we don't need to put a firewall in the router in place because it would be under the rule "allowed and established connection" which is by default on all routers activated or should be anyway by default on every router. Or should we open all the ports that you using from out-> in because trackers servers and relay server need to make NEW connections to your app? thanks in advance
  3. Hello, my name is Christoph and I'am running resilio sync as a windows service. So far, so good. The problem is, that sometimes all peers are shown as offline but of course, they are not. After restarting the operating system a few times, resilio is able to find the other peers (online). But this happens at irregular intervals and I've run out of ideas. Do you have any solution or workaround for me? Many thanks in advance.
  4. Currently, when sync runs between two hosts at different locations on our WAN, the traffic is pushed through our IPSEC tunnels saturating the connection and the transfer speed is significantly slowed. Is there a firewall rule I can put in place that will make this traffic traverse the internet instead of going over these links?
  5. Hi! I have successfully installed Resilio Sync on a headless Ubuntu server (16.04). Currently my firewall (ufw) is disabled and I'm not 100% sure which ports I should allow for Rsync to work correctly. Is port 3000 enough? Thanks!
  6. Is there a single port, or a group of ports I can block on a firewall to prevent direct client to client transfers over our WAN links. These transfers are much quicker when routed via the internet, but right now clients are directly sending data via our site to site links. The firewall rule would be implemented directly on the site to site link.
  7. I have set up BittorrentSync on my laptop computer (windows 10), on my server (Windows 2012 server) and on my iPhone. All devices are located at home. On the Windows 10 computer I have installed the Desktop Version of BittorrentSync, on the Windows Server 2012 I have installed BittorrentSync as a Windows Service. My strategy is to sync several folders when I am located at home, so "LAN only". I am not interested to sync stuff when I am on the road. But I was very surprise to find out that when I am outside my LAN (office, public Wifi etc), BIttorrentSync on my iPhone shows my home peers as connected an also data is synced. I wonder how this can happen, as I never opend a firewall Port on my home's LAN router. As I understood, no BittorrentSync central servers are used. Somebody can help my understand the technology? Thanks!
  8. With v.1.4.72 syncing became slow. It can sync couple of KBs for an hours. There is sending/receiving status with speed like 22 B/s and so on. v1.3.9 was OK Any ideas?
  9. Hi, It is my understanding that it should be possible to tunnel BTSYNC through ssh and bypass then any firewall configuration, but I haven't been able to find any guide AND I cannot make it work. What I do: - In my work computer configure putty to tunnel the (source) port 15000 to the IP of my home connection, where the destination is dynamic. - Configure my home router to forward the 22 connection towards my raspberry pi - Start putty and log into my raspberry pi ssh server - In my computer configure BTSYNC to use a socks (4 or 5) proxy pointing to localhost:15000 And that should work or I am wrong? It doesn't as BT doesn't find any peer. And if I configure Firefox to use this proxy server, I do have internet and my IP looks like my home IP, so I'd say putty is working as it is expected. Then, what is the problem? Thanks,
  10. Hello btsync have wrong implementation of upnp. It works only on networks without routers between network segments. In our case we have follow network organization: Whole network is: This network is divided to subnetworks with 64 host in each other. Now we have 3 subnetworks subnetworks and join to with routers. In we have gateway( to global network. On that gateway work nat, nd upnp server, and btsync client placed in subnetwork When btsync starts it send multicast SSDP discovery(we see this throw wireshark): M-SEARCH * HTTP/1.1 HOST: ST:upnp:rootdevice MAN:"ssdp:discover" MX:3 and gateway response to it: HTTP/1.1 200 OK CACHE-CONTROL: max-age=120 ST: upnp:rootdevice USN: uuid:75802409-bccb-40e7-8e6c-60a44c67052b::upnp:rootdevice EXT: SERVER: RT-N56U/ UPnP/1.1 MiniUPnPd/1.8 LOCATION: OPT: ""; ns=01 01-NLS: 1 BOOTID.UPNP.ORG: 1 CONFIGID.UPNP.ORG: 1337 But btsync just ignore this, and doesn't discovers service list:, which have <deviceType>urn:schemas-upnp-org:device:InternetGatewayDevice:1</deviceType> As a result no any port are opened.
  11. Hello, I have a working setup at home where 2 laptops connect through a switch would sync the files without connecting to the internet. edit : I know they synced locally because they where getting speeds of up to 20mb/s which my internet feed won't reach. I do however suspect they connected to the internet to find each other because at my corporate network I am behind multiple firewalls with IPS / IDS and all sorts of smart filters. Now they can't find each other even when they are in the same subnet with no firewalls in between them. Is there any way to let them find each other without using a tracker of some sort ?
  12. Hello, is it really necessary to have a static port number? If not please change it to a random one like in utorrent. This should make it harder to be blocked by local firewalls (ie. chinese GFW). As a little extra this port can change every x minutes and switch between udp and tcp. or misuse common ports like 21, 25, 80, ... I am using torrent sync to backing up domains from a linux server. The program has a --dump-sample-config parameter. But it would be extremly nice to convert these binary config data that only can be changed via the web ui to a text like for reusing it on other maschines. btsync --dump-current-config and you have all keys and directorys and all the other preferences in a nice clean config.conf Michael
  13. Hello, I have been using bitsync for sometime now at work to keep files synced between my tablets and my computer. Today when the android software updated it stopped being able to sync. I contacted my IT and they informed me that it must be routing through the bittorent website which they have unequivocally blocked from their servers and they refuse to understand that this application has nothing to do with downloading illegal media. My question is: Is there a way to download the older version of bitsync for android and windows 7 so that I can continue to use bitsync? My suggestion for improvment: The bittorrent use seperate servers or a proxy for bitsync so that it won't encounter firewall prejudice. Thanks.
  14. There are multiple btsync instances (devices) in 2 distinct locations. Each location is protected with network based firewall (UPnP disabled for security reasons in both locations). If I understand correctly, upon device boot (if btsync starts automatically), btsync connects to Tracker server, to inform about device, hashes, current IP and port it's listening. (that's why it is FW friendly). Please correct me if I'm wrong. And thus, all BTsync instances can find each other, if they have to negotiate over internet. Here are a couple of questions and assumptions: - Because BTsync is FW friendly (see above my understanding), it should not be a requirement to introduce any particular firewall settings allowing UDP traffic to come in, and all other instances should get acknowledged on new ports/ip addresses. Q: Why there are btsync instances, which try to hit firewall on particular UDP ports (44943), obviously getting blocked, to get connection, if they should not? (the sync is working correctly any way). - If still, some firewall configurations should be deployed, allowing incoming UDP traffic and port redirection, then there might be a conflict with listening ports, if configured manually. This means, that each btinstance behind teh firewall should be configured manually, looking to not place 2 or more instances on the same listening ports. Thus it might be configured in firewall with UDP and port redirection particularly. I'd obviously try to escape this config, if it is not requirement, to lower burden on management and tracking. Q: Are there still requirements for firewall configurations and should incoming UDP traffic, including port redirection, be deployed, to allow BTsync to run flawlessly? Appreciate your comments and insights on causes, why it's happening. P.S. Actually just noticed, that the same happens to TCP connections too. So it might be related.
  15. Hi. I would like to sync my raspberry pi with my ubuntu Laptop. For this task i would want to create a ssh tunnel from the ubuntu laptop to the pi. How could i do that, my bittorrent sync traffic would go through this tunnel and start finding my pi as a device? I could also use a vpn, but i would appreciate to use the ssh method. Thanks
  16. So, I'm toying around with btsync as it seems to be a good solution for syncing multiple computers. But I have troubles syncing on my work desktop who is behind a gateway+firewall. Here is my setting : * home desktop: debian jessie (testing), behind my ISP box (via ethernet) serving as DHCP/router, probably using NAT. Probably no fix IP address. Usually off when I'm not at home. * home laptop: debian jessie, wifi to the box, on my home LAN. * work desktop: debian wheezy (stable), behind a gateway/firewall/router. Probably using NAT. The router certainly has a fix IP. Always on. I have root power on all theses machines, but I do not have root access to the work gateway. I can ssh to it. I usually connect (from home to work) using ssh + nc on the gateway to automatically "rebound" to my machine. I have installed tuxpoldo btsync-user packages (thanks) on each of these three machines. Even through it is not the same distro (jessie/wheezy), it is still the same package (v 1.13.0-1). So I assume version (in)compatibility problems are not an issue. I have absolutely no problem syncing on my LAN. However, nothing goes to (or from) the work computer. When I set up the secret on the work computer, the home ones were shut down, thus no sharing was possible, but I have since turned them on without any sync happening. From tests I've made on my LAN, that should not be a real issue. But since LAN discovery does not work the same way as internet does (through trackers), that may be a cause of problem. Since I do not have root powers on the work gateway, I can not add any firewall/NAT/… exception to handle this. I can probably, however, set up an ssh tunnel to go through it. As far as I understand, that may require me to add some "known host" to my home computer to directly plug into the tunnel, but that's not a big deal. I have never set up ssh tunnels before, but that's definitely something I can do if needed… From what I've gathered, it looks like the relay hosts should basically allow this scenario to work. I am using them (ie I have not removed them). So any idea on why this does not work or how to make it work?
  17. If I were to run Linux btsync on a Linux gateway, I would like to configure it so it only listens on private IP addresses, and not the gateway's public IP. A configuration option giving the listen IP address would be nice (there's one for the webui but not the sync stuff). Also, I second the suggestion elsewhere that webui support https.
  18. I work for a small research company that makes educational software/games, and we've got a deployment of 50 computers in 10+ schools. We're currently synchronizing our application and media content from our server to the schools, and our log files from the schools to our server using SyncBack (FTP, yes I know -- without the S, no need to lecture). The schools have varying and inconsistent firewall rules, so the sync isn't happening at some locations. I know the limitations of the networks and why the transfers aren't working, so I'm not asking how to get through the firewall limitations This question is more to determine if btsync can get through strict firewall rules. Some locations allow FTP, SSH, SFTP, HTTP, and others are locked down to just HTTP. I've tried using WinSCP instead of SyncBack and tunneling SSH over HTTP using Aache mod_proxy, but even this is detected at some sites as a malicious proxy attack. At some sites we do not have the ability to open firewall ports. We need a synchronization solution that will work given these restrictions. Is btsync capable of handling this scenario? What ports does btsync use, what protocols for establishing the network (peer detection) and what protocol and ports for data transfer? Basically in the worst case all data needs to be transferred over HTTP protocol, and *not* using HTTP connect (e.g., Apache's mod_proxy ). In the best case the school is "wide open." I think btsync will work great for us, as it will limit the external bandwidth since not all 10 computers at each site will need to download the application updates. One can do the external download and the peers can sync from that "master" and from each other. In the worst case scenario that the school is completely shut off from the world, we could upgrade just by stopping by with an updated laptop and btsync would propagate all the changes to the peers on the LAN. I'd like to avoid that if possible. Thanks in advance! cm p.s. One of my alternative deployment solutions is using git to deploy the application (like Heroku uses). This should work since git has an HTTP protocol for pulling. The downsides are that we have a *lot* of data in our application/media and don't need/want to store the version history/deltas (in my tests the initial repo was about 1.8x as large as the folder hierarchy); and all the clients would have to pull all the changes, hogging network bandwidth.
  19. I've been able to setup BitTorrent Sync locally, but I'm having trouble getting my router to work with it. In my logs I see "Requesting peers from tracker via UDP" but it says it "Got 3 tracker ips" along with 2 relay IPs. [2013-12-27 20:28:36.527] Got 2 relay ips[2013-12-27 20:28:36.527] ip[2013-12-27 20:28:36.527] ip[2013-12-27 20:28:36.527] Got 3 tracker ips[2013-12-27 20:28:36.527] ip[2013-12-27 20:28:36.527] ip[2013-12-27 20:28:36.527] ip Any idea why it is not using one of the three tracker IPs for the requesting peers? I'm not sure if this is my problem, but I can post the full log file if needed. I am using Sophos UTM as a firewall / router. I've allowed any UDP 3000 traffic, and port forwarded the listening port to the system running BitTorrent Sync. Thanks for any help.
  20. Hi, I'm using BtSync to sync my android smartphone, my Ubuntu laptop and a Ubuntu backup server. The android phone and the laptop are behind a very restrictive firewall and can't sync with the Ubuntu backup server, and I'm looking for a solution. Here is a schema : What can I do to try pass this firewall, how can I test the port (to try to find one working) or have I to give up ? With my laptop, I can reach the server with FTP, SSH, HTTP... Dropbox is working through this firewall. Thanks ! Ron
  21. Hi there. I have btsync running on my home server and some of my computers all running Linux. On my home server, config file has a value of assigned to the listen variable, so I can access the WebUI on port 8887. However, that only happens on my LAN or through my VPN. I punched a hole on my firewall to access it from the outside as well, but I always get a connection refused error. The punch is active, but there's no access to the WebUI from the internet. Any ideas on why this may be happening? Thanks in advance, Ignacio