KDE Connect firewall rules
Anthony Messina
amessina at messinet.com
Thu Jul 3 12:43:50 UTC 2014
On Thursday, July 03, 2014 02:09:25 PM Richard Z wrote:
> On Wed, Jul 02, 2014 at 08:40:49PM +0530, Sudhir Khanger wrote:
> > On Wed, Jul 2, 2014 at 8:30 PM, Richard Z <rz at linux-m68k.org> wrote:
> > > Hi,
> > >
> > > perhaps these firewall rules are useful to someone, works for me
> > > when "192.168.2.0/8" is the local network where the Android device
> > > connects.
> > >
> > > # firewall-cmd --permanent --add-rich-rule 'rule family="ipv4" source
> > > address="192.168.2.0/8" port port="1714-1764" protocol="udp" accept'
> > >
> > > # firewall-cmd --permanent --add-rich-rule 'rule family="ipv4" source
> > > address="192.168.2.0/8" port port="1714-1764" protocol="udp" accept'>
> >
> >
> > I am waiting for kde-connect-0.7. In spite of disabling firewalld,
> > kde-connect keeps unregistering itself.
>
> did it ever pair correctly? If so then you may be hitting Android
> powersaving/WIFI issues.
I'm using the following kde-connect service template with great success. I
have also created a my_internal zone which makes it easy to add services to
that zone. That way, you don't need to add so many rich rules; just create
new services and add them to your unique source-based zone.
# my_internal.xml (corrected for your source range)
<?xml version="1.0" encoding="utf-8"?>
<zone>
<short>My Internal</short>
<description>Only incoming connections from specified source IP address
ranges to specified services are accepted.</description>
<source address="192.168.2.0/24"/>
<service name="ssh"/>
</zone>
# kde-connect.xml
<?xml version="1.0" encoding="utf-8"?>
<service>
<short>KDE Connect</short>
<description>KDE Connect enables desktop integration with mobile
devices.</description>
<port protocol="tcp" port="1714-1764"/>
<port protocol="udp" port="1714-1764"/>
</service>
Then issue
$ firewall-cmd --zone my_internal --service-add kde-connect [--permanent]
I have noticed that when I log out or restart the workstation, I need to re-
pair the Android to KDE, but that's a different issue.
--
Anthony - http://messinet.com - http://messinet.com/~amessina/gallery
8F89 5E72 8DF0 BCF0 10BE 9967 92DC 35DC B001 4A4E
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.fedoraproject.org/pipermail/kde/attachments/20140703/75517e08/attachment.sig>
More information about the kde
mailing list