Print

[Toddler]

QUOTE(cory1492 @ Nov 26 2010, 06:10 PM)

Actually, it seems it can send a lot more data than most think quite possibly including things like crash dumps. There was a topic around regarding what it does send even with family block in place, and it is not enough to keep the console from phoning home with it's reports.

Most routers will allow you to assign access restrictions to WAN based on the MAC of the machine connected to the router... why not go that route?

Anybody know what to block (or conversely, to allow) so that a JTAG can still get title updates and synchronize time but won't be able to communicate with Live in any way?

This post has been edited by Toddler: Nov 27 2010, 11:25 AM

[iwanttheagrocrag]

QUOTE(Ketchup_Bomb @ Nov 26 2010, 06:14 PM)

Even though there is a tiny bit of handshaking with it on, Family Settings which restrict Xbox Live access works for blocking Live profiles from going online.

I've been using it on my LT+ (offline) console and JTAG console for years and I've had no issues.

I guess that's what everybody does. And that's probably is what i will be forced to do. But i don't like the idea of the xbox sending data like that

QUOTE(cory1492 @ Nov 26 2010, 07:10 PM)

Actually, it seems it can send a lot more data than most think quite possibly including things like crash dumps. There was a topic around regarding what it does send even with family block in place, and it is not enough to keep the console from phoning home with it's reports.

Most routers will allow you to assign access restrictions to WAN based on the MAC of the machine connected to the router... why not go that route?

I wish that would work but i have tryed it and my router is a dlink-825, the menus inside are really crappy and they don't apply the settings right even when i do it. I paid $150 for it because it had dual band wireless N and its still a POS. Even the wireless N has crappy range. A-lot of people hate that router. I am even more mad because I can't even put dd-wrt on my revision A

QUOTE(Toddler @ Nov 27 2010, 05:25 AM)

Anybody know what to block (or conversely, to allow) so that a JTAG can still get title updates and synchronize time but won't be able to communicate with Live in any way?

That's kinda what i was looking for and the ability to play on Xlink, I guess we just disable Live in the family settings. The problem is, it does still transmit some data to M$ still. Or maybe someone has a better idea.

[mossopinc]

thanks moeom that got it (IMG:style_emoticons/default/smile.gif)

[danthaman673]

QUOTE(rhai @ Nov 26 2010, 04:59 PM)

I loaded freestyle dash (disabled filemanager) as a default dash.
If someone accessed system settings, they can access to memory management in which might accidentally format the attached usb hard drive.

if there in an option in dashlaunch that may disable access to nxe then the attached usb harddrives cannot be formatted thus saving the games from accidental deletion.

i have kids playing at home and i need to limit their access. i cannot let them change system settings or worse, format the usb drives
(edit)
btw! thanks for filling in the request. i appreciate it very much! also, others will

Yeah try using the PIN codes to stop them doing stuff outside their kids profile. My 4 yr old can't read so he sometimes trys everything on menu to learn thru trial and error (made his older siblings mad when he reset their castle crashers at lvl 50 <or what ever it is that takes days>) Amazingly he manged to hack the code I had several times!!!(to the point where I gave-up on putting new ones on) But it so far seems to have prevented him formatting my JTAG, He knows he's not allowed to do anything in Xexmenu, but I know he selects games (I guess the games on the menu are just too interesting to resist as opposed to boring file manager ;-)

QUOTE(Toddler @ Nov 27 2010, 07:55 PM)

Anybody know what to block (or conversely, to allow) so that a JTAG can still get title updates and synchronize time but won't be able to communicate with Live in any way?

You can block outgoing XBL DNS lookups or you can block the range (I can work it out later, but I'm sure any Halo bridger here can tell you more easily than I)
It would also pay to block NAT
Alternatively you could go static IP (like for gateway) and leave-out (or dummy) DNS then you can do FTP etc.. locally with no WAN communique. It's a good question, (same old story, If no-one else answers with the IPs and/or ranges and I get time later then I might post a detailed list, But at the moment I find it a little difficult to log as my online boxes use full open NAT... (Not impossible, But I've re-arranged my whole network recently and in the interests of speed it's a lot more streamlined, Anyway if it comes to that ..)

If you block XBL in family settings then ur probably safe anyway (at least for now, they know there would be an uproar if they were caught, there has been unconfirmed reports of ppl having their KV's banned, but they might be mistaken seeing as they only ban u in less than an Hour these days and other obvious reasons ...)


EDIT: As I've just reliased there seems to be a very real (and great) need for this, I will add it to my to-do list for later next week and maybe try to compile something that is very definitive and possibly usable for a Dash-Launch plugin (or whatever) Applying my Xpert WAN/Networking knowledge to the issue. But if someone else out-there etc.. You would be saving me a lot of time (assuming you have this info at ur fingertips) I'm pretty sure the Halo Bridging IP's would have to cover at least 90% of eventualities but I suppose they could have added/re-addressed servers since as that's half the point of updates etc..

Brgds/Dan

[Toddler]

Not sure if this Microsoft page is to be believed, and it also gives conflicting information in two different places:

Make sure the following network ports are open on your firewall:
- Port 88 (UDP)
- Port 3074 (UDP and TCP)
- Port 53 (UDP and TCP)
- Port 80 (TCP)

and

Open the following ports:
- Port 88 (UDP and TCP)
- Port 3074 (UDP and TCP)

So I wouldn't exactly bet money on that info without putting a sniffer on it first.

[Thyatis]

Hi,

Can anyone test burnout paradise with there jtag?  Off internal harddrive (mine is 500gig that shouldn't matter)

My burnout paradise will boot and then just reset when selecting a profile.  thought it was the profile but i created new, and if i remove dash launch it works fine.  So i am not sure.

thanks

[rhai]

QUOTE(Thyatis @ Nov 28 2010, 11:14 PM)

Hi,

Can anyone test burnout paradise with there jtag?  Off internal harddrive (mine is 500gig that shouldn't matter)

My burnout paradise will boot and then just reset when selecting a profile.  thought it was the profile but i created new, and if i remove dash launch it works fine.  So i am not sure.

thanks

Mine works wihout problems. (IMG:style_emoticons/default/smile.gif)

[danthaman673]

QUOTE(Toddler @ Nov 28 2010, 05:48 AM)

Not sure if this Microsoft page is to be believed, and it also gives conflicting information in two different places:

Make sure the following network ports are open on your firewall:
- Port 88 (UDP)
- Port 3074 (UDP and TCP)
- Port 53 (UDP and TCP)
- Port 80 (TCP)

and

Open the following ports:
- Port 88 (UDP and TCP)
- Port 3074 (UDP and TCP)

So I wouldn't exactly bet money on that info without putting a sniffer on it first.

I'm pretty sure 53 is DNS (from memory)
Port 80 is HTTP, and I would guess blocking that would limit some JTAG apps severely. I'm still convinced that maintaining a list of XBL and/or M$ DNS servers is the go, I don't think it's that long, but it prolly gets longer every dash release, still the application of a range should do the trick. I haven't forgotten about this one, but it may take me at least a week (or so) to get to doing it properly and then testing/sitting on it with a sniffer (although the latter is almost certainly overkill)

Another though occured: When the original handhske etc.. was observed it would have been must likely to only one or a couple of easy to log and block IP(s) so if whoever originally did it wanted to expand OR if some1 wanted to repeat the experiment then the resulting combo of blocking XBL sign-in on the dash and blocking the remaining M$ IP's would give everyone peace of mind ......

[cory1492]

Dan if you get some solid info on IP ranges let me know, it should be relatively trivial to hook some of the raw socket functions to prevent connects to a black list of IPs - it's just trying to find out what those IPs are when I won't let my machines touch WAN that is troublesome.

QUOTE(Toddler @ Nov 27 2010, 03:25 AM)

Anybody know what to block (or conversely, to allow) so that a JTAG can still get title updates and synchronize time but won't be able to communicate with Live in any way?

It's my understanding that a machine that has been allowed onto WAN (ie: with parental block only in place) will be banned, and will be unable to sync time through normal routes if banned. Also, I don't see how one would think they could get title updates through in game/dash routes without contacting a m$/LIVE server  (IMG:style_emoticons/default/blink.gif)

Personally I have my machines blocked at the router from accessing WAN, the router running tomato delivers it's CRON synced time to a 404 page which is trivial to use to poll and set xbox time from a plugin.

This post has been edited by cory1492: Nov 29 2010, 03:26 PM

[red_ring_of_box]

For the curious, it seems the 360 does do a little communicating with the Xbox Live servers for updates/possible ban data when it connects using UDP port 3074. It was discovered by Kiewee123 here:

http://forums.xbox-scene.com/index.php?sho...718356&st=0

[dryan433]

QUOTE(red_ring_of_box @ Nov 29 2010, 10:14 PM)

For the curious, it seems the 360 does do a little communicating with the Xbox Live servers for updates/possible ban data when it connects using UDP port 3074. It was discovered by Kiewee123 here:

http://forums.xbox-scene.com/index.php?sho...718356&st=0

 

 

will say that this maybe true in a way but if it was ban data then my jtag would of bin flagged long time ago but my xval is still clean which says its not ban data it has full access to the internet all the time i only set to stop live access full stop no one can connect or creat new live accounts iv only ever had 1 that was banned at the start due to dvd drive but i know what it was and have never done so since (IMG:style_emoticons/default/smile.gif)

 

so basicly its not it maybe checking back etc but ban wave dont affect them as iv said my xval is still clean as a whistle so i personly say it safe to just set family settings to block live you aint breaking any rules microsoft are more concerned to the consoles that are hacked ie drive or jtag from accessing and going on live as it allows cheats etc as there no need to go on live with such console when we have alternatives now for jtags

 

but people still try to push there luck on that scale i dont agree with it i have 1 untouched 360 that is live with no hacked dvd drive and my jtag that i play my coppies on etc if i like a game so much to play online i go out and buy that game on original its how anyone should do it

 

and for fsd send a request to them to add the function/option to password the settings system tools tab sure they would add it for next release (IMG:style_emoticons/default/smile.gif)

This post has been edited by dryan433: Nov 30 2010, 01:15 AM

[red_ring_of_box]

QUOTE(dryan433 @ Nov 29 2010, 07:12 PM)

will say that this maybe true in a way but if it was ban data then my jtag would of bin flagged long time ago...

true but maybe they just send the hypervisor hashes or something along those lines and tell the servers to do extra checking on this console if it ever connects to Live for a quicker ban, we don't know(I think) so its really up for grabs. Though ANY phoning home is a bad thing in any case. Just a heads up is all

QUOTE(dryan433 @ Nov 29 2010, 07:12 PM)

but people still try to push there luck on that scale i dont agree with it i have 1 untouched 360 that is live with no hacked dvd drive and my jtag that i play my coppies on etc if i like a game so much to play online i go out and buy that game on original its how anyone should do it

and for fsd send a request to them to add the function/option to password the settings system tools tab sure they would add it for next release

same and dito

[azuziel]

Most rotuers allow you to connect via telnet, here is where you would block ports for routers that don't support the option via the gui. My old speedtouch was like that, had to do everything via cli. If you find a tech manual for your model, I'd be suprised if Dlink's weren't configureable via command prompt. linksys are, but, theyre' also a division of cisco now, so maybe that explains that.

As far as MS ranges go, I know 65.55.42.* is owned by Microsoft Corp

This post has been edited by azuziel: Nov 30 2010, 06:14 PM

[runwave87]

I am have never been able to get dash launch to work for me. I place launch.xex in root of content. placed the sample renamed to info_launch in root of hdd and root of content folder. ran the installer and applied the patches. shutdown. pulled power for 1 minute. still boots to nxe....help?

Edit: nevermind figured it out...

This post has been edited by runwave87: Dec 7 2010, 02:05 AM

[Inuyasha152]

Hey everyone,

I'm trying to help a friend out that's trying to play an Xbox 1 PAL rollerblading game on his 360. Everytime he boots it the game it shows an error saying "This game is designed for a PAL xbox only" and won't run. I noticed that Dashlaunch 2.07 has an option for region spoofing, but I think I'm setting it up incorrectly. Here's the Launch.ini:

CODE

[Settings]
pingpatch = true
contpatch = true
fatalreboot = true
regionspoof = true
; region = 0x02FE
nosysexit = true

In the readme it says:

QUOTE

; when set to true, it is possible to hold RB when launching a game to have the region that the game gets from xam spoofed
; if not present this is set to false
regionspoof = false
; when regionspoof is true, you set your region here in hex, for examle devkit would be region = 0x7fff
; if not present but regionspoof is set to true, this is set to 0x7FFF
region = 0x7FFF

Also, at the bottom it says:

QUOTE

; are required for any used options under the section

Can someone help point me in the right direction? I'm not sure if I'm actually formating it or placing the region code in the correct place. Thanks in advance!