On Mon, Jul 11, 2016 at 03:09:20PM +0200, Karl-Philipp Richter wrote:
> How to access a coda server behind a NAT for authentication with `clog`
> and file access? I figured I need to forward port 370 TCP and maybe UDP

As far as I know it should just be 370/udp for the auth2 server and
2432/udp for the Coda server.

We don't use the TCP ports, and the bulk side-effect (SFTP) which used
to be on 2433/udp is now piggybacked onto the 2432 port's traffic
because it made it very hard to impossible to correctly pass through
firewalls.

>     $ sudo netstat -tupln | grep auth2
>     udp6       0      0 :::370                      :::*
>                 17638/auth2
> 
> `auth2` listening to IPv6 which makes the forwarding irrelevant for IPv4

Not really, by default Linux will forward all IPv4 traffic to the
listening IPv6 socket (controlled by /proc/sys/net/bindv6only).

> with which I need to work. I don't find any configuration directives in
> `venus.conf` and `server.conf` and no default version of the mentioned

You cannot change the ports at this point, not sure what directives you
are looking for.

> `auth2.conf` file nor a manpage of the latter. Authentication with

I don't think there ever has been an auth2.conf, it is all commandline
options.

Jan