SHOUTcast server - sc_serv.exe

Blesavi · October 24, 2007, 12:06pm

Hi.

I recently installed Comodo firewall, and it works like a charm so far (with a few exceptions). I am a musician, and i sometimes want to stream some new music to ie. a friend, using winamp and Nullsoft’s shoutcast server.

However, it doesn’t work with the firewall. I should be able to use my browser to get a status report from the server, using my own IP + port 8000 (this is the stream’s port). What do i do?

kail · October 24, 2007, 12:30pm

Hi Blesavi, welcome to the forums.

I believe that for ShoutCast that you need to open TCP/UDP ports 8000 & 8001. Go to the Network Monitor a create a new rule (above the final block & log rule)…

Allow - TCP/UDP - In - Destination Port 8000-8001 (Port Range).

To confirm this is what you need, go to CFPs Log (Activity tab) & you should see incoming connection attempts on ports 8000-8001 blocked by CFPs final block & log rule. This means that the connection attempts were unsolicited, which they are. CFPs Log is a good diagnostic tool to see what rules are required.

Blesavi · October 24, 2007, 1:05pm

Hi - and thanks

…also thanks for the fast reply. I did what you said, but with no luck - i still can’t seem to connect to it. Also Comodo pops up with some allow/deny messages, in relation to the server-app (see attached screenshots). Actually it does this a lot. both with 127.0.0.1 as ‘remote’ as well as my actual IP.

The Connections monitor shows an ‘Application Access Denied’ for sc_serv.exe from my own IP on the port 3028 (and a range of other ports).

[attachment deleted by admin]

kail · October 24, 2007, 1:37pm

The remote ports are not very useful because they change (a lot). You cannot really use the Connections Monitor as a diagnostic tool, because things change too rapidly to make it meaningful & it doesn’t show a history of connections. Also did you Allow or Deny these alerts? Anyway, can you post an few examples of CFPs Log entries.

CFPs Log can be Exported to an HTML file by right-clicking on the Log (Activity tab) & selecting Export to HTML. This will export the entire Log to an HTML file. Open the HTML file with your default browser (the one you’re using now) and use a simple click-drag-select Copy ‘n’ Paste to post quoted example Log entries here. Like this (from an old Log of mine)…

Date/Time :2006-08-13 20:33:09 Severity :Medium Reporter :Network Monitor Description: Inbound Policy Violation (Access Denied, IP = 10.35.235.233, Port = MS-ds(445)) Protocol: TCP Incoming Source: 213.205.240.249:3713 Remote: 10.35.235.233:MS-ds(445) TCP Flags: SYN Reason: Network Control Rule ID = 3

Blesavi · October 24, 2007, 1:45pm

Ah yea - sure thing.

Actually the pop-up warnings were my bad. I had attempted a few things to make it work, before seeking help, but with no luck, obviously. So i had removed sc_serv.exe as a trusted app - it is now back to being trusted and the pop ups are gone I did allow them, btw.

As for connecting, i can now connect to the status page via firefox myself. But this is what Comodo says when a friend of mine tries to connect:

Date/Time :2007-10-24 15:27:58
Severity :Medium
Reporter :Network Monitor
Description: Inbound Policy Violation (Access Denied, IP = 1.1.1.1, Port = 8000)
Protocol: TCP Incoming
Source: 1.1.1.1:4676
Destination: 2.2.2.2:8000
TCP Flags: SYN
Reason: Network Control Rule ID = 5

And the SHOUTcast directory tester also tried:

Date/Time :2007-10-24 14:50:01
Severity :Medium
Reporter :Network Monitor
Description: Inbound Policy Violation (Access Denied, IP = 3.3.3.3, Port = 8000)
Protocol: TCP Incoming
Source: 3.3.3.3:39868
Destination: 1.1.1.1:8000
TCP Flags: SYN
Reason: Network Control Rule ID = 5

If it’s any help, the sc_serv log states, that:

<10/24/07 [ at ] 15:45:42> [yp_add] yp.shoutcast.com gave error (nak)
<10/24/07 [ at ] 15:45:42> [yp_add] yp.shoutcast.com gave extended error (Cannot see your station/computer (IP: 1.1.1.1:8000) from the Internet, disable Internet Sharing/NAT/firewall/ISP cache (Connection timed out).)

edit: possible private IPs masked by Mod

kail · October 24, 2007, 2:01pm

The Destination Ports were as expected (8000). But, according to the Log entries they were blocked by the Network Monitor Rule 5 (probably CFPs final block & log rule). Did you place the new rule above the final block & log rule?

Blesavi · October 24, 2007, 2:09pm

Ahhh - that’s very clever. Didn’t see that coming…

It seems to work like it should now - both shoutcast directory tester and friend can connect without problems.

Thanks a lot for the help :■■■■

kail · October 24, 2007, 2:12pm

No problem, glad I could help.