Mailinglist Archive: opensuse (1555 mails)
| < Previous | Next > |
Re: [opensuse] firewall settings for printer browsing
- From: Boris Epstein <borepstein@xxxxxxxxx>
- Date: Wed, 1 Jul 2009 16:13:47 -0400
- Message-id: <8fbac5ca0907011313k534da7b4mb0fae91a6ee7aee4@xxxxxxxxxxxxxx>
On Wed, Jul 1, 2009 at 3:02 PM, Carlos E. R.<robin.listas@xxxxxxxxxxxxxx> wrote:
Thanks Carlos!
I just allowed broadcast replys from all UDP ports - and still all I
got is one printer (as opposed to 30+ I get when I stop the firewall
completely). There's something that is still in the way...
Boris.
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Wednesday, 2009-07-01 at 14:47 -0400, Boris Epstein wrote:
Cups uses udp on port 631.
Thanks, Per!
Opening incoming connections to UDP 631 as well as from UDP 631 does
not seem to help... So I am guessing it must be something else
involved here.
For discovery to work, I think you might need to allow broadcast in to 631.
# Note that if you allow specifc ports here it just means that broadcast
# packets for that port are not dropped. You still need to set
# FW_SERVICES_*_UDP to actually allow regular unicast packets to
# reach the applications.
#
# Format: either
# - "yes" or "no"
# - list of udp destination ports
#
# Examples: - "631 137" allow broadcast packets on port 631 and 137
# to enter the machine but drop any other broadcasts
# - "yes" do not install any extra drop rules for
# broadcast packets. They'll be treated just as unicast
# packets in this case.
# - "no" drop all broadcast packets before other filtering
# rules
#
# defaults to "no" if not set
Like:
FW_ALLOW_FW_BROADCAST_INT="ipp netbios-ns netbios-dgm"
- -- Cheers,
Carlos E. R.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
iEYEARECAAYFAkpLsukACgkQtTMYHG2NR9WKIQCdEAWFZ93WSeoTAmBICbPZRAWa
9yUAnAn/h7yTWGmTpzLRRt/23fEMk6Um
=NIzG
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
Thanks Carlos!
I just allowed broadcast replys from all UDP ports - and still all I
got is one printer (as opposed to 30+ I get when I stop the firewall
completely). There's something that is still in the way...
Boris.
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
| < Previous | Next > |