[Firehol-support] FireHOL and miniupnpd

Ignacio Benedetti tranceway at gmail.com
Sun Aug 9 17:34:31 BST 2015


On Sat, Aug 8, 2015 at 6:54 AM, Phil Whineray <phil at sanewall.org> wrote:

> Hi Ignacio
>

Hello Phil!


> If it works with policy accept, can you try adding into "nolan" the
> "server multicast accept" and report the logs accordingly?
>

Thanks, that was the solution!

Coming back to miniupnpd: I guess that is receiving my "open the port"
request but does not really opens the port.

I added a custom service to FireHOL: natpmp and accept him in "lan" context
to allow the udp request to 5351 reach the miniupnpd daemon.

I see this attributes in the config file of miniupnpd:
# Chain names for netfilter (not used for pf or ipf).
# default is MINIUPNPD for both
#upnp_forward_chain=forwardUPnP
#upnp_nat_chain=UPnP

How can I know what is the name assigned by FireHOL for these chains?
Will this be the solution?

Thanks!

Current FHOL config: http://pastebin.com/ykbzbhuJ

-- 
Ignacio J. M. Benedetti
mailto:tranceway at gmail.com
http://github.com/nachopro



More information about the Firehol-support mailing list