Hi

I'm on a network which uses firewall with masquerade. All outgoing TCP/UDP connections to all ports are allowed. All games/applications work without problems, but RO hands on "checking firewall" window.

The Firewall requirement from FAQ seems not quite clean to me:
You need to allow traffic to the following ports:
- TCP protocol: 48000, 48001, 47300, 80
- UDP protocol: 9660

Do you mean, that these TCP ports should be allowed to receive packets without initiating connection from LAN first (the masquerade takes care of allowing such incoming connections once it has been initiated from my network)?

The tcp ports are at the destination of the connection, the ports at server. At client it use random ports i think.

The tcp ports are at the destination of the connection, the ports at server. At client it use random ports i think.
Then it should work.
The firewall machine is FreeBSD with masquerade rule for natd:
divert 8668 ip from any to any via rl0
As i wrote before, games (all Blizzard games), different p2p clients are working without a need to fix something in firewall.
But if RO server connects to these ports on client first, then something should be tuned on firewall. But i don't think they do so...:confused2:

I've checked with tcpdump: all 3 TCP ports work without the problem (otherwise i wound't be able to login :)), but after "Checking firewall" window appears, during couple of seconds there's an exchange with port 48001 and then the complete silence... :(
UDP port should be used only during the game, so why the windows is frozen?

at client and server side you need to open:

9961,9962,9963 for udp.

i have a trace for wireshark if you want it xD

solved the problem, thanks to arlick :)
RO was sending packets from my_ip:9961 to sevrer:9961, and these packet were blocked by firewall. so i've added these rules to firewall:
allow udp from any to any 9961,9962,9963