schard
Habe in den Systemdateien nachgesehen und u.a. die Textdatei "simple_firewall.rules" mit folgendem Inhalt gefunden:
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -p icmp -j ACCEPT
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -p udp -j REJECT --reject-with icmp-port-unreachable
-A INPUT -j REJECT --reject-with icmp-proto-unreachable
COMMIT
net-firewall-ports page enthält folgendes:
page xmlns="http://projectmallard.org/1.0/"
xmlns:its="http://www.w3.org/2005/11/its"
type="topic" style="reference"
id="net-firewall-ports">
<info>
<link type="guide" xref="net-security"/>
<link type="seealso" xref="net-firewall-on-off"/>
<revision pkgversion="3.4.0" date="2012-02-20" status="final"/>
<revision pkgversion="3.18" date="2015-09-28" status="final"/>
<credit type="author">
<name>Paul W. Frields</name>
<email>stickster@gmail.com</email>
</credit>
<include href="legal.xml" xmlns="http://www.w3.org/2001/XInclude"/>
<desc>You need to specify the right network port to enable/disable network
access for a program with your firewall.</desc>
</info>
<title>Commonly-used network ports</title>
<p>This is a list of network ports commonly used by applications that provide
network services, like file sharing or remote desktop viewing. You can change
your system’s firewall to <link xref="net-firewall-on-off">block or allow
access</link> to these applications. There are thousands of ports in use, so
this table isn’t complete.</p>
<table shade="rows" frame="top">
<thead>
<tr>
<td>
<p>Port</p>
</td>
<td>
<p>Name</p>
</td>
<td>
<p>Description</p>
</td>
</tr>
</thead>
<tbody>
<tr>
<td>
<p>5353/udp</p>
</td>
<td>
<p>mDNS, Avahi</p>
</td>
<td>
<p>Allows systems to find each other, and describe which services
they offer, without you having to specify the details manually.</p>
</td>
</tr>
<tr>
<td>
<p>631/udp</p>
</td>
<td>
<p>Printing</p>
</td>
<td>
<p>Allows you to send print jobs to a printer over the network.</p>
</td>
</tr>
<tr>
<td>
<p>631/tcp</p>
</td>
<td>
<p>Printing</p>
</td>
<td>
<p>Allows you to share your printer with other people over the
network.</p>
</td>
</tr>
<tr>
<td>
<p>5298/tcp</p>
</td>
<td>
<p>Presence</p>
</td>
<td>
<p>Allows you to advertise your instant messaging status to other
people on the network, such as “online” or “busy”.</p>
</td>
</tr>
<tr>
<td>
<p>5900/tcp</p>
</td>
<td>
<p>Remote desktop</p>
</td>
<td>
<p>Allows you to share your desktop so other people can view it or
provide remote assistance.</p>
</td>
</tr>
<tr>
<td>
<p>3689/tcp</p>
</td>
<td>
<p>Music sharing (DAAP)</p>
</td>
<td>
<p>Allows you to share your music library with others on your
network.</p>
</td>
</tr>
</tbody>
</table>
</page>