Mikaela
/
mikaela.github.io
mirror of https://github.com/mikaela/mikaela.github.io/
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

ufw: 9001 is udp port for Yggdrasil

This commit is contained in:
Aminda Suomalainen 2018-11-03 18:49:26 +02:00
parent 0343521895
commit 3886ac3764
No known key found for this signature in database
GPG Key ID: 0C207F07B2F32B67
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
_posts/2015-06-12-ufw.md
View File

@ -42,7 +42,7 @@ ufw allow from fe80::/10 to any port 631
#ufw allow from 192.168.8.0/24 to any port 5353 proto udp
ufw allow from fe80::/10 to any port 5353 proto udp
#ufw allow from <static:Yggdrasil:IPv6> to any port 5900
ufw allow from fe80::/10 to any port 9001
ufw allow from fe80::/10 to any port 9001 proto udp
ufw allow 60000:61000/udp
```
@ -67,8 +67,8 @@ ufw allow 60000:61000/udp
* 5353 UDP/mdns/Avahi — used for `.local` addresses.
* 5900 — VNC port at least for `krfb kdrc` (KDE Remote Desktop server & client).
I tend to only allow it from specific Yggdrasil address(es).
* 9001 — [Yggdrasil](https://yggdrasil-network.github.io/) automatic peering
port only on link-local.
* 9001/udp — [Yggdrasil](https://yggdrasil-network.github.io/) automatic
peering port only on link-local.
* 60000:61000 UDP/mosh — I feel this is the most insecure part of this
setup and there should be something bettter instead of this. As
something evil could run and listen on these ports.