Firewall: iptables
|
WARNING |
|---|---|
| This is recommended only for advanced users, proceed with caution. |
Contents
iptables tutorial
If you're looking for a tutorial for how to use iptables there are better ones out there such as this one. The purpose of this article is to provide Amahi users with a basic set of core rules in which they can enable the iptables firewall on their Amahi HDA without disrupting network services.
Edit the firewall to allow core services
You can edit your firewall rules by editing /etc/sysconfig/iptables or run the command system-config-firewall.
First you need to understand what ports must be open in your HDA.
- 53 - DNS
- 67,68 - DHCP
- 80 - HTTP
- 139 - NetBIOS port for Samba
- 443 - HTTPS if you optionally Access_HDA_over_SSL.
- 445 - Samba File Sharing (port for your network shares)
- 1194 - VPN
- 5353 - Multicast DNS
Here is the minimum iptables firewall rules required for your HDA to still function as an HDA. These rules do not include any extra services you have enabled such as SSH (port 22), VNC (port 5902), MiniDLNA (port 8200), etc. For extra apps and services you'll have to look up documentation on the App you're using.
| Text |
|---|
'"`UNIQ--pre-00000000-QINU`"'
|
Modify iptables state
Start the firewall.
| bash code |
|---|
service iptables start
|
Stop the firewall.
| bash code |
|---|
service iptables stop
|
Show the current rules.
| bash code |
|---|
service iptables status
|
Service command usage.
| Text |
|---|
Usage: iptables {start|stop|restart|condrestart|status|panic|save}
|
List of ports needed for current Amahi Apps
TO BE UPDATED!
