> I have several different services on my network that use UPnP, and none > of them seem to work unless I disable the Firewall on my Fedora 14 > desktops/laptops. Everything I've read says that I should be able to > allow UDP on port 1900, but that doesn't seem to help. Can anyone tell > me or point me to documentation about what I need to enable to let my > Fedora 14 machines to see the services via UPnP?
My memory is a bit sketchy but along with IGD I had to add a few firewall rules and a route to allow multicast upnp. This was for a fedora box that I was using as a firewall/gateway system. Some igd docs. http://linux-igd.sourceforge.net/documentation.php Below is a script I used for the firewall rules. [agagne@linux0 tmp]$ cat bin/add-upnpd.sh #iptables -N UPNP #iptables -I FORWARD 2 -j UPNP #iptables -A INPUT -i eth1 -p tcp --dport 2869 -j ACCEPT #iptables -A INPUT -i eth1 -p udp --dport 1900 -j ACCEPT # Good firewalls drop everything that has not been explicitly allowed, # so first create rules to allow other computers to connect to the upnp daemon. iptables -t filter -A INPUT -i eth1 -d 239.0.0.0/8 -j ACCEPT iptables -t filter -A INPUT -i eth1 -p tcp --dport 49152 -j ACCEPT iptables -t filter -A INPUT -i eth1 -p udp --dport 1900 -j ACCEPT # Create chains for the rules to be created by the upnp daemon. iptables -t filter -N UPNP_FORWARD iptables -t filter -I FORWARD 2 -j UPNP_FORWARD iptables -t nat -N UPNP_PREROUTING iptables -t nat -A PREROUTING -j UPNP_PREROUTING Use at your on risk as I am not a firewall expert. I got this working after much googleing on how to set-up igd so my son could play games from another system runnning win7. Alan -- users mailing list users@lists.fedoraproject.org To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
