Mikaela/mikaela.github.io
1
0
Fork 0
mirror of https://github.com/mikaela/mikaela.github.io/ synced 2024-12-26 21:22:32 +01:00
Code Issues Projects Releases Wiki Activity

ufw: add bt lpd

Browse Source 
Resolves: #166
This commit is contained in:
Aminda Suomalainen 2019-09-19 15:54:29 +03:00
parent da2513b6d8
commit d66413b612
No known key found for this signature in database
GPG Key ID: 0C207F07B2F32B67
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
blog/_posts/2015-06-12-ufw.md
View File

@ -44,6 +44,7 @@ ufw allow from fe80::/10 to any port 631
#ufw allow from 192.168.8.0/24 to any port 5353 proto udp #ufw allow from 192.168.8.0/24 to any port 5353 proto udp
ufw allow from fe80::/10 to any port 5353 proto udp ufw allow from fe80::/10 to any port 5353 proto udp
#ufw allow from <static:Yggdrasil:IPv6> to any port 5900 #ufw allow from <static:Yggdrasil:IPv6> to any port 5900
ufw allow 6771/udp
ufw allow from fe80::/10 to any port 9001 proto udp ufw allow from fe80::/10 to any port 9001 proto udp
ufw allow 60000:61000/udp ufw allow 60000:61000/udp
``` ```
@ -69,6 +70,7 @@ ufw allow 60000:61000/udp
* 5353 UDP/mdns/Avahi — used for `.local` addresses. * 5353 UDP/mdns/Avahi — used for `.local` addresses.
* 5900 — VNC port at least for `krfb kdrc` (KDE Remote Desktop server & client). * 5900 — VNC port at least for `krfb kdrc` (KDE Remote Desktop server & client).
I tend to only allow it from specific Yggdrasil address(es). I tend to only allow it from specific Yggdrasil address(es).
* 6771/udp — [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html)
* 9001/udp — [Yggdrasil](https://yggdrasil-network.github.io/) automatic * 9001/udp — [Yggdrasil](https://yggdrasil-network.github.io/) automatic
peering port only on link-local. peering port only on link-local.
* 60000:61000 UDP/mosh — I feel this is the most insecure part of this * 60000:61000 UDP/mosh — I feel this is the most insecure part of this