Mailinglist Archive: opensuse (770 mails)

< Previous Next >
Re: [opensuse] Router firewall vs openSUSE firewall
On 08/28/2012 08:40 PM, Bob Williams wrote:
On 28/08/12 17:42, Togan Muftuoglu wrote:
On 08/28/2012 06:06 PM, Bob Williams wrote:

barrowhillfarm:~ # grep -v ^# /etc/sysconfig/SuSEfirewall2|sed /^$/d

This machine is 192.168.1.14.

192.168.1.20 is my laptop running gmpc which connects to an mpd server
on 192.168.1.14 through port 6600.

the references to tcp and udp traffic through ports 8200 and 1900 are my
attempts to let minidlna traffic through.

Many thanks for your help.


Change the following parameters as below

FW_SERVICES_ACCEPT_EXT=""
FW_LOG_DROP_ALL="yes"
FW_LOG_ACCEPT_ALL="yes"
FW_ALLOW_FW_BROADCAST_EXT="yes"
FW_IGNORE_FW_BROADCAST_EXT="no"

then with root privileges /sbin/SuSEfirewall2 start

Begin trying to use your application and send the relevant part of the
logs, ie if the service is unreachable then find the log entries which
are dropped and send them or use susepaste.org which in that case send
the paste id

Togan

The Bluray player at 192.168.1.16 said "No server found", and this is
the relevant part of the log:

Aug 28 19:13:14 localhost kernel: [18427.980357] SFW2-INext-DROP-DEFLT
IN=eth0 OUT= MAC=01:00:5e:7f:ff:fa:00:1c:50:49:04:b6:08:00
SRC=192.168.1.16 DST=239.255.255.250 LEN=122 TOS=0x00 PREC=0x00 TTL=1
ID=0 DF PROTO=UDP SPT=59000 DPT=1900 LEN=102

without changing anything and with root privileges from the console give
these two commands

echo 0 > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts 2> /dev/null
echo 20 > /proc/sys/net/ipv4/igmp_max_memberships 2> /dev/null

Try again and send the relevant part of the logs

Togan

--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
To contact the owner, e-mail: opensuse+owner@xxxxxxxxxxxx

< Previous Next >
Follow Ups