[arm-allstar] Finicky Little Computer

Rory Bowers k6cks01 at gmail.com
Tue May 15 20:53:45 EST 2018 

Hi Doug,
You wrote...
I am wondering why you are using a firewall to begin with.
This surprised me.  The answer is simple; to keep the Pi from being hacked.
Is your Pi directly on the Internet?
Yes... we have a static ip assignment on a port of a switch behind our
isp's router with all ports open.
Are you not using a nat'ed router?
No we are not.  A nat'd router would be one more piece of equipment to buy
and one more point of failure.
There is no reason to use a firewall on your Pi in that case it just makes
things more complicated.
If this is the case then why did someone in the group go to all the trouble
to write ufw??  I don't believe
that ufw is going to complicate anything.  Only the necessary ports are
open; my ssh port, a port for supermon, and port 4569.
Does anything else need to be open?
Linux is not Windows and has only the necessary ports opened anyway.
Where is that configured?

Rory, K5CKS

On Tue, May 15, 2018 at 7:03 PM, "Doug Crompton via arm-allstar" <
arm-allstar at hamvoip.org> wrote:

> Rory,
>
>   ufw is not a program we support or even recommend using. I am wondering
> why you are using a firewall to begin with. Is your Pi directly on the
> Internet? Are you not using a nat'ed router?  There is no reason to use a
> firewall on your Pi in that case it just makes things more complicated.
> Linux is not Windows and has only the necessary ports opened anyway.
>
>
> *73 Doug*
>
> *WA3DSP*
>
> *http://www.crompton.com/hamradio <http://www.crompton.com/hamradio>*
>
>
> On Tue, May 15, 2018 at 6:31 PM, "Rory Bowers via arm-allstar" <
> arm-allstar at hamvoip.org> wrote:
>
> > While I was trying to get supermon to run outside my lan I reset ufw to
> ufw
> > default allow incoming.  I then did ufw disable.  After getting
> everything
> > running in supermon I did a ufw default deny incoming.  ufw returned
> > command not found.  ufw wasn't uninstalled that I know of, what would
> cause
> > this??
> >
> > Thanks,
> > Rory, K5CKS
> > _______________________________________________
> >
> > arm-allstar mailing list
> > arm-allstar at hamvoip.org
> > http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
> >
> > Visit the BBB and RPi2/3 web page - http://hamvoip.org
> >
> _______________________________________________
>
> arm-allstar mailing list
> arm-allstar at hamvoip.org
> http://lists.hamvoip.org/cgi-bin/mailman/listinfo/arm-allstar
>
> Visit the BBB and RPi2/3 web page - http://hamvoip.org
>

More information about the arm-allstar mailing list