Re: Firewall behaviour is strange on one of my systems

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 10/28/2015 03:52 AM, antonio montagnani wrote:

I am using a desktop where I have connected a printer: if I enable the
firewall I can connect by IP numbers and print if printer is
nameofprinter@IPof desktop (the same with vinagre, i can connect by IP
numbers and not by names): the only way to print (and connect by names
in vinagre, and share Public Files) is to have firewall stopped.

This is my firewall configuration:

FedoraWorkstation (default, active)
   interfaces: p19p1
   sources:
   services: dhcpv6-client dns ipp ipp-client mdns samba-client ssh
   ports: 1025-65535/udp 1025-65535/tcp
   masquerade: no
   forward-ports:
   icmp-blocks:
   rich rules:


any help??? Tnx


You have a DNS resolution issue. With the firewall enabled, as root,
try:

	# iptables -L -n | grep :53

and make sure you see lines like:

	ACCEPT  udp  --  0.0.0.0/0    0.0.0.0/0            udp dpt:53
	ACCEPT  tcp  --  0.0.0.0/0    0.0.0.0/0            tcp dpt:53

to ensure you can do DNS. These don't normally show up under the
firewall GUI. If they are NOT open on your machine, then open them in
the firewall GUI and reload the firewall.

Also make sure avahi-daemon and dnsmasq are running. Avahi-daemon is
generally run via

	# systemctl start avahi-daemon.service

dnsmasq is usually started by the libvirtd service if you have
virtualization installed. If not, it can be started via

	# systemctl start dnsmasq.service

If you've had to start either, then also

	# systemctl enable <name-of-service>

to make sure they start on the next reboot as well.
----------------------------------------------------------------------
- Rick Stevens, Systems Engineer, AllDigital    ricks@xxxxxxxxxxxxxx -
- AIM/Skype: therps2        ICQ: 226437340           Yahoo: origrps2 -
-                                                                    -
-  You know you've landed gear-up when it takes full power to taxi.  -
-                                                -- Chuck Yeager     -
----------------------------------------------------------------------
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [EPEL Devel]     [Fedora Magazine]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Desktop]     [Fedora Fonts]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Fedora Sparc]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux