Firewall settings that worked for me on Fedora 20

Forums / NoMachine for Linux / Firewall settings that worked for me on Fedora 20

Viewing 7 posts - 1 through 7 (of 7 total)
  • Author
    Posts
  • #2336
    Avataryaconsult
    Participant

    I have used NX 3 quite a bit but attempts at pre-release NX 4 on Fedora were previously unsuccessful.

    I am happy to report that the latest NX works fine on Fedora 20, but you need to open two ports on the firewall first, as follows.

    Open the firewall configuration GUI and select Permanent in the Configuration pulldown.  The click the plus sign at the bottom of the Service column to add a new entry.  Name it NX or whatever you like and save it.  Then select the entry you just created and go over to the Ports and Protocols tab and push the add button under it.  Add one entry for port 4000 and a second entry for port 24004.  Leave the protocol set to the default of TCO for both of them.

    After making these changes, go up to Options on the menu bar and select Reload Firewall.  Now you will be able to connect to the Fedora machine from NX running on another system.

    #2365
    Avatartitan
    Participant

    Technically, you just need port 4000 TCP (or the port you decided to use for the NX service).

    I presume the additional port 24004 is what the client or server selected at random for UDP. You can change it or disable UDP altogether in Edit connection, Advanced.

    Both the client and the server try to use UDP, if they can. First the server will try to use the UDP port opened by the client, then the client will try to establish the communication on the UDP port opened by the server. If both attempts fail, the communication will continue using only the TCP port.

    At the time I’m writing, the ports are added automatically to the firewall configuration on Windows. Not so on Mac and Linux. This is going to change in the future.

    #2589
    Avatarsnejok
    Participant

    Hello, titan!

    “If both attempts fail, the communication will continue using only the TCP port.”

    Can you explain me (or give the link to article) which functionality/features I will lose if I disable UDP and will use only TCP?

    There is any difference between “SSH” and “NX without UDP”?

    #2626
    Avatarfra81
    Moderator

    No functionality will be lost if you disable UDP. It may only affect performance.

     

    These articles can be of interest for you:

    https://www.nomachine.com/AR11K00739

    https://www.nomachine.com/AR11K00745

    #2642
    Avatarsnejok
    Participant

    @fra81, thank you!

    #2644
    Avatarsnejok
    Participant

    It may only affect performance.

    Do you mean multimedia (audio/video) only or overall session performance too?

    #3896
    Avatarfra81
    Moderator

    Sorry for really long delay. I missed your reply.

    Surely the difference will be more noticeable in case of multimedia.

Viewing 7 posts - 1 through 7 (of 7 total)

This topic was marked as solved, you can't post.