Andreas Wagner wrote:
[...] I took this to mean thatI had to specify
FW_ALLOW_INCOMING_HIGHPORTS_UDP="20 6277" (and possibly FW_SERVICES_EXT_UDP="ntp 6277")
in /etc/sysconfig/SuSEfirewall2, which brought up the alerts above.
Can you tell me if I got it right and if this would be considered a reason to keep FW_ALLOW_INCOMING_HOGHPORTS_UDP?
I didn't understand the description that way. FW_SERVICES_EXT_UDP should be sufficient. If you use FW_SERVICES_ACCEPT_EXT instead you can also limit the IP addresses that have access to the port. cu Ludwig -- (o_ Ludwig Nussel //\ SUSE LINUX Products GmbH, Development V_/_ http://www.suse.de/ --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org