KDE Connect firewall rules

Anthony Messina amessina at messinet.com
Thu Jul 3 12:43:50 UTC 2014 

On Thursday, July 03, 2014 02:09:25 PM Richard Z wrote:
> On Wed, Jul 02, 2014 at 08:40:49PM +0530, Sudhir Khanger wrote:
> > On Wed, Jul 2, 2014 at 8:30 PM, Richard Z <rz at linux-m68k.org> wrote:
> > > Hi,
> > > 
> > > perhaps these firewall rules are useful to someone, works for me
> > > when "192.168.2.0/8" is the local network where the Android device
> > > connects.
> > > 
> > > # firewall-cmd --permanent --add-rich-rule 'rule  family="ipv4" source
> > > address="192.168.2.0/8"  port port="1714-1764" protocol="udp"  accept'
> > > 
> > > # firewall-cmd --permanent --add-rich-rule 'rule  family="ipv4" source
> > > address="192.168.2.0/8"  port port="1714-1764" protocol="udp"  accept'>
> > 
> >
> > I am waiting for kde-connect-0.7. In spite of disabling firewalld,
> > kde-connect keeps unregistering itself. 
> 
> did it ever pair correctly? If so then you may be hitting Android
> powersaving/WIFI issues.

I'm using the following kde-connect service template with great success.  I 
have also created a my_internal zone which makes it easy to add services to 
that zone.  That way, you don't need to add so many rich rules; just create 
new services and add them to your unique source-based zone.

# my_internal.xml (corrected for your source range)
<?xml version="1.0" encoding="utf-8"?>
<zone>
  <short>My Internal</short>
  <description>Only incoming connections from specified source IP address 
ranges to specified services are accepted.</description>
  <source address="192.168.2.0/24"/>
  <service name="ssh"/>
</zone>

# kde-connect.xml
<?xml version="1.0" encoding="utf-8"?>
<service>
  <short>KDE Connect</short>
  <description>KDE Connect enables desktop integration with mobile 
devices.</description>
  <port protocol="tcp" port="1714-1764"/>
  <port protocol="udp" port="1714-1764"/>
</service>

Then issue 
$ firewall-cmd --zone my_internal --service-add kde-connect [--permanent]

I have noticed that when I log out or restart the workstation, I need to re-
pair the Android to KDE, but that's a different issue.

-- 
Anthony - http://messinet.com - http://messinet.com/~amessina/gallery
8F89 5E72 8DF0 BCF0 10BE 9967 92DC 35DC B001 4A4E
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.fedoraproject.org/pipermail/kde/attachments/20140703/75517e08/attachment.sig>

More information about the kde mailing list