[mythtv-users] iptables and MythTV

Kirk Grell kirkgrell at yahoo.com
Wed Dec 28 09:33:41 EST 2005


At one point, I thought this machine might not be
behind a separate firewall.  But now it looks like it
is going to be after all.

Thanks,
Kirk

--- John Andersen <jsamyth at gmail.com> wrote:

> On 12/27/05, Doug Bunger <dougbunger at yahoo.com>
> wrote:
> > You turn off the firewall during instalation,
> because
> > you are often using software like apt, yum,
> up2date,
> > synaptic, etc to resolve dependancies.  During
> > operation the open ports will depend on you
> hardware
> > deployment:
> >
> > database needs port 3306 for mysql, usually only
> tcp
> > backend needs port 3306 to get to the database
> > backend needs port 80 to access schedule data,
> usually
> > only tcp
> > backend *may* need 111 for portmap if /mnt/video
> is on
> > nfs
> > backend *may* need random nfs ports as determined
> by
> > nfs
> > backend need ports 42160 & 42161 for streaming,
> > usually only tcp
> > (But I hope you got a really good uplink on your
> > remote if you're gonna try it.)
> > frontend will probably need all the same.
> >
> > --- Kirk Grell <kirkgrell at yahoo.com> wrote:
> 
> Of course most of these are only of concern if you
> do agressive egress filtering.
> 
> For your in-house server, presumably behind a
> firewall, it becomes sort of self defeating to
> filter at that level.  Personally, I don't even
> run IPTables on my Myth Boxes because nothing
> gets through my seperate firewall, and I don't have
> the bandwidth to push live tv out of my box over
> my internet connection.
> 
> 
> --
> ----------JSA---------
> _______________________________________________
> mythtv-users mailing list
> mythtv-users at mythtv.org
>
http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users
> 



	
		
__________________________________ 
Yahoo! for Good - Make a difference this year. 
http://brand.yahoo.com/cybergivingweek2005/


More information about the mythtv-users mailing list