http://wiki.rivendellaudio.org/index.php?title=Firewall_Setup&feed=atom&action=historyFirewall Setup - Revision history2024-03-28T12:30:28ZRevision history for this page on the wikiMediaWiki 1.26.4http://wiki.rivendellaudio.org/index.php?title=Firewall_Setup&diff=31&oldid=prevHiggles: Created page with "'''''--Note: This is still a work in progress, it is not complete!--''''' ==Getting Started== First you need to decide if you want to turn on the local firewall or leave t..."2018-02-21T15:25:32Z<p>Created page with "'''''--Note: This is still a work in progress, it is not complete!--''''' ==Getting Started== First you need to decide if you want to turn on the local firewall or leave t..."</p>
<p><b>New page</b></p><div>'''''--Note: This is still a work in progress, it is not complete!--'''''<br />
<br />
==Getting Started==<br />
<br />
<br />
<br />
First you need to decide if you want to turn on the local firewall or leave things open. That is something ''you'' need to decide. Also you need to decide on whether to firewall outgoing connections or only incoming.<br />
<br />
===Disadvantages To Enabling the Firewall===<br />
<br />
* It makes things more complicated<br />
<br />
===Advantages To Enabling the Firewall===<br />
<br />
* It is '''Good Security Practice'''<br />
* It allows you to know what is exposed<br />
* It can protect from untrustworthy LAN guests/users<br />
<br />
==Standalone Rivendell Box==<br />
<br />
Here you probably are looking at this list to decide on what to open up:<br />
====Incoming====<br />
* TCP port 22 - ssh connections (optional: for remote administration)<br />
* TCP port 3306 - remote MySQL connections (optional: for use of Windows Rivendell Programs. See also: [[Remote Client Access]])<br />
* TCP port 5901 - VNC connections (optional: for remote connections and administration)<br />
* UDP port 5859 - RML commands (optional: if you send commands from another Rivendell workstation or Windows)<br />
<br />
====Outgoing====<br />
* UDP port 123 - ntp client (optional: for time synchronization)<br />
<br />
==Networked Rivendell Machines==<br />
In this setup you would have the MySQL database on one machine and the Audio Library on one machine (probably, though not necessarily, the same one) with the other Rivendell machines connecting in. Here you probably are looking at this list to decide on what to open up:<br />
====Incoming====<br />
* TCP port 22 - ssh connections (optional: for remote administration)<br />
* TCP port 3306 - remote MySQL connections ('''required''': for remote database connections. See also: [[Remote Client Access]])<br />
* TCP port 5901 - VNC connections (optional: for remote connections and administration)<br />
* UDP port 5859 - RML commands (optional: if you send commands from another Rivendell workstation or Windows)<br />
<br />
====Outgoing====<br />
* UDP port 123 - ntp client (optional: for time synchronization)<br />
<br />
==Networked Rivendell Machines With Hot Standby Setup==<br />
Here you probably are looking at this list to decide on what to open up:<br />
====Incoming====<br />
* TCP port 22 - ssh connections (optional: for remote administration)<br />
* TCP port 3306 - remote MySQL connections ('''required''': for remote database connections. See also: [[Remote Client Access]])<br />
* TCP port 5901 - VNC connections (optional: for remote connections and administration)<br />
* UDP port 5859 - RML commands (optional: if you send commands from another Rivendell workstation or Windows)<br />
<br />
====Outgoing====<br />
* UDP port 123 - ntp client (optional: for time synchronization)</div>Higgles