Mikaela/mikaela.github.io
1
0
Fork 0
mirror of https://github.com/mikaela/mikaela.github.io/ synced 2025-01-12 14:02:41 +01:00
Code Issues Projects Releases Wiki Activity

ufw: tell users who don't run identd to reject 113

Browse Source
This commit is contained in:
Aminda Suomalainen 2015-07-06 15:26:49 +03:00
parent 1fe84f2ce6
commit 583c3ea26a
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
_posts/2015-06-12-ufw.md
View File

@ -41,6 +41,13 @@ ufw allow 60000:61000/udp
* Put the firewall in force.
* 113/ident — Allow identd to be reached, probably all my hosts run it for
IRC.
* If some host doesn't run it use `ufw reject 113` so the IRC server
asking for your ident is replied "Connection refused" and the
connecting happens faster as you aren't force to wait for timeout.
* I am not sure if this is faster than running ident, but my
recommendation is to allow it if you run it and otherwise reject.
Deny forces you to wait for timeout as your firewall says
nothing.
* 631/cups — Allow access to cups for printer sharing
* 5060/sip — VoIP, in this case Linphone
* 5353/mdns/Avahi — used for `.local` addresses