* Carlos E. R. <robin.listas@telefonica.net> [10-21-18 20:15]:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
El 2018-10-22 a las 00:03 +0200, David Haller escribió:
Hello,
On Sun, 21 Oct 2018, Carlos E. R. wrote: [..]
<0.4> 2018-10-21 22:16:44 Legolas kernel - - - [ 5143.203427] FINAL_REJECT: IN=wlan1 OUT= MAC=01:00:5e:00:00:01:f8:8e:85:64:78:f2:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=0 DF PROTO=2
I understand it is a broadcast from the router, probably trying to find information about the local network. How do I tell the firewalld to accept them? I have no idea.
https://firewalld.org/documentation/service/examples.html
Last example, "mdns".
That example is incoming to port 5353 (mdns), I underrstand. But my problem is not coming on ANY port. See log entry carefully:
<0.4> 2018-10-21 23:15:13 Legolas kernel - - - [ 8651.485628] FINAL_REJECT: IN=wlan1 OUT= MAC=01:00:5e:00:00:01:f8:8e:85:64:78:f2:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=0 DF PROTO=2
There is no port listed there. Proto=2, that's IGMP.
Anyway, mdns is already opened in the firewall. Firewall Configuration GUI, Runtime, Zone 'public', service 'mdns'.
- -- Cheers Carlos E. R.
(from openSUSE 15.0 (Legolas))
-----BEGIN PGP SIGNATURE-----
iHoEARECADoWIQQZEb51mJKK1KpcU/W1MxgcbY1H1QUCW80WRBwccm9iaW4ubGlz dGFzQHRlbGVmb25pY2EubmV0AAoJELUzGBxtjUfVMcQAn2F884HowwN1kjc2LO2X 3xASGd1EAKCQNaSYwKQ1ReXpFfzKdNq5OTf9mQ== =4P75 -----END PGP SIGNATURE-----
from: https://www.centos.org/forums/viewtopic.php?t=60395 (following are one liners) firewall-cmd --permanent --direct --add-rule ipv4 filter INPUT 0 -m pkttype --pkt-type multicast -j ACCEPT firewall-cmd --permanent --direct --add-rule ipv6 filter INPUT 0 -m pkttype --pkt-type multicast -j ACCEPT but you could have done that yourself. -- (paka)Patrick Shanahan Plainfield, Indiana, USA @ptilopteri http://en.opensuse.org openSUSE Community Member facebook/ptilopteri Registered Linux User #207535 @ http://linuxcounter.net Photos: http://wahoo.no-ip.org/piwigo paka @ IRCnet freenode -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org