Firewall

[Richard W.M. Jones]

On Mon, Dec 06, 2010 at 03:06:24PM -0500, seth vidal wrote:
> On Mon, 2010-12-06 at 21:01 +0100, Tomasz Torcz wrote:
> > On Mon, Dec 06, 2010 at 02:56:19PM -0500, seth vidal wrote:
> > > On Mon, 2010-12-06 at 14:55 -0500, Bill Nottingham wrote:
> > > > seth vidal (skvidal at fedoraproject.org) said: 
> > > > > Bittorrent won't work through many/most wireless routers unless they are
> > > > > not natted and/or not explicitly configured.
> > > > > 
> > > > > what network games?
> > > > > Heck, what network games do we HAVE?
> > > > > 
> > > > > what are the use cases of zeroconf-enabled apps that we're targetting?
> > > > 
> > > > Zeroconf and IPP browse packets are both means of making priting less
> > > > of a giant pain to set up.
> > > 
> > > ah, printing. 
> > > 
> > > Is there anything that's not last century?
> > 
> > 
> >   Yeah, general discovery.  From the top of my head:
> > - Pulseaudio sinks and sources
> > - libvirt instances for virt-manager
> > - VNC desktops for Vinagre
> > - local web pages (think SOHO router config page) for zeroconf
> >   enabled Webbrowsers like Epiphany
> > - remote disk management (udisks)
> > - local FTP sites and WebDAV shares shown in nautilus places
> > 
> >   And this is all blocked by default Fedora firewall settings (5353/udp).
> > 
> 
> I'm confused - are any of the above intended to be used/available by
> anyone who is NOT experienced enough to know what iptables are and how
> to manage them? B/c I think it's a bit unlikely.

Our tooling around avahi sucks (even the command line tools), but the
idea itself is quite wonderful.

Rich.

-- 
Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones
virt-p2v converts physical machines to virtual machines.  Boot with a
live CD or over the network (PXE) and turn machines into Xen guests.
http://et.redhat.com/~rjones/virt-p2v