Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Is NAT in OpenBSD PF UPnP enabled or Non UPnP?

From: Chuck Swiger <chuck () codefab com>
Date: Tue, 31 May 2005 18:49:56 -0400
On May 30, 2005, at 10:31 PM, Darren Reed wrote:

Is the NAT in PF UPnP enabled??

or could someone tell me how I can accomplish this with OpenBSD.
The only free, unix-based, UPnP implementation is for Linux and iptables, 
so your solution is to wipe OpenBSD and install Linux.
When it comes to things like UPnP, there are a lot of luddites in the *BSD community. Others of us, who have benefited from it and understand why it 
is useful, just don't have time.
An odd set of comments to make. I understand why UPnP is useful, and it is a fine thing for your LAN at home or maybe a tiny business which can't afford anyone to actually manage the network, but the people on this list ought to have some concern about security, too.
I don't see how permitting arbitrary services to go through can be a good idea from that standpoint, any more than permitting arbitrary RPC through is a good idea....
To the OP: why are you trying to do UPnP through a firewall? Why can't you put the devices which are permitted/expected to talk to each other with that kind of freedom on the same subnet? 

--
-Chuck

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: