On Tue, 2012-08-28 at 11:29 +0100, Bob Williams wrote:
My system is openSUSE 12.1 running KDE 4.9 behind a NAT router (Draytek 2800v) which incorporates its own configurable firewall. I'm also running a minidlna server linked through the router to my Blueray player. When I disable the openSUSE firewall, I can browse the directories on my computer from the TV and view/play media files. If I enable the openSUSE firewall, the server is not seen. Is it safe to rely on the router firewall alone,
No, appropriate firewall rules should be applied to all devices.
combined with NAT,
NAT is not about security; it is about address space management.
always accepting that safety is a relative term?
Yes, safety is relative. And it is increased significantly when everything protects itself [every device should know what traffic it should and shouldn't carry].
Conversely, has anyone successfully set up minidlna through the openSUSE firewall, and if so, what settings did you use?
No, I've never used minidlna.