[Nix-dev] Enabling CUPS unconditionally allows UDP/631 on the firewall
Peter Simons
simons at cryp.to
Mon Dec 23 21:36:00 CET 2013
Hi guys,
commit 71ee40a..6bc4007 changes the default behavior of the nixos modules
nixos/modules/services/networking/minidlna.nix
nixos/modules/services/x11/terminal-server.nix
nixos/modules/services/printing/cupsd.nix
so that they *don't* open up the firewall by default anymore. If you use these
modules and you want other hosts to connect to your machine, please configure
an appropriate firewall rule in your /etc/nixos/configuration.nix file. The
easiest way to do that is to add these rules:
# CUPS
networking.firewall.allowedUDPPorts = [ 631 ];
# minidlna
networking.firewall.allowedTCPPorts = [ 8200 ];
networking.firewall.allowedUDPPorts = [ 1900 ];
# terminal-server, x11vnc
networking.firewall.allowedTCPPorts = [ 5900 ];
Take care,
Peter
More information about the nix-dev
mailing list