3
rated 0 times
[
3]
[
0]
/ answers: 1 / hits: 4972
/ 2 Years ago, tue, march 1, 2022, 7:20:54
Does anyone here use iptables
with skype
? The only way I have been able to get it working so far is to allow all the high ports- something like
iptables -A OUTPUT -p UDP --dport 1024:65535 -j ACCEPT
iptables -A OUTPUT -p tcp --dport 1024:65535 -j ACCEPT
iptables -A INPUT -p UDP --dport 1024:65535 -j ACCEPT
iptables -A INPUT -p tcp --dport 1024:65535 -j ACCEPT
which is obviously less than ideal. The problem is as far as I can tell the ports skype
uses are somewhat random. I was hoping it might be possible to allow application level firewalling by using setuid
or setguid
, for example
sudo addgroup skypeGrp
sudo usermod theUser -G skypeGrp
sudo chgrp skypeGrp /usr/bin/skype
chmod g+s /usr/bin/skype
iptables -A OUTPUT -m owner --gid-owner skypeGrp -j ACCEPT
but this didn't seem to work.
Perhaps other have a better solution?
More From » skype