From 10e58676c7a9c4e9ba420acd5fdb2540e9313647 Mon Sep 17 00:00:00 2001 From: Joseph Hanson Date: Sat, 13 Apr 2024 18:48:41 -0500 Subject: [PATCH] More mdns configs --- config-parts/firewall-ipv4.sh | 10 +++++++++- config-parts/service-dhcp_server.sh | 4 ++-- 2 files changed, 11 insertions(+), 3 deletions(-) diff --git a/config-parts/firewall-ipv4.sh b/config-parts/firewall-ipv4.sh index 3b7c834..627e39c 100644 --- a/config-parts/firewall-ipv4.sh +++ b/config-parts/firewall-ipv4.sh @@ -35,9 +35,12 @@ set firewall ipv4 name iot-local rule 120 destination port 'domain,domain-s' set firewall ipv4 name iot-local rule 120 protocol 'tcp_udp' set firewall ipv4 name iot-local rule 200 action 'accept' set firewall ipv4 name iot-local rule 200 description 'Rule: accept_discovery_from_sonos_players' -set firewall ipv4 name iot-local rule 200 destination group port-group sonos-discovery +set firewall ipv4 name iot-local rule 200 destination group port-group sonos-player-discovery set firewall ipv4 name iot-local rule 200 protocol 'udp' set firewall ipv4 name iot-local rule 200 source group address-group 'sonos_players' +set firewall ipv4 name iot-local rule 210 description 'Rule: accept_discovery_from_sonos_controllers' +set firewall ipv4 name iot-local rule 210 destination group port-group sonos-player-discovery +set firewall ipv4 name iot-local rule 210 protocol 'udp' set firewall ipv4 name iot-local rule 220 action 'accept' set firewall ipv4 name iot-local rule 220 description 'Rule: accept_api_from_sonos_controllers' set firewall ipv4 name iot-local rule 220 destination group port-group sonos-controller-api @@ -537,6 +540,11 @@ set firewall ipv4 name trusted-local rule 110 action 'accept' set firewall ipv4 name trusted-local rule 110 description 'Rule: accept_mdns' set firewall ipv4 name trusted-local rule 110 destination port 'mdns' set firewall ipv4 name trusted-local rule 110 protocol 'udp' +set firewall ipv4 name trusted-local rule 111 action 'accept' +set firewall ipv4 name trusted-local rule 111 description 'Rule: accept_mdns_2' +set firewall ipv4 name trusted-local rule 111 destination address '255.255.255.255' +set firewall ipv4 name trusted-local rule 111 destination port '9' +set firewall ipv4 name trusted-local rule 111 protocol 'udp' set firewall ipv4 name trusted-local rule 110 source port 'mdns' set firewall ipv4 name trusted-local rule 120 action 'accept' set firewall ipv4 name trusted-local rule 120 description 'Rule: accept_dns' diff --git a/config-parts/service-dhcp_server.sh b/config-parts/service-dhcp_server.sh index 05f259c..c9e594a 100644 --- a/config-parts/service-dhcp_server.sh +++ b/config-parts/service-dhcp_server.sh @@ -166,8 +166,8 @@ set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mappin set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mapping sonos-2 mac-address '48:a6:b8:fa:62:0e' set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mapping sonos-3 ip-address '10.1.3.73' set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mapping sonos-3 mac-address '48:a6:b8:fa:64:a6' -set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mapping sonos-4 ip-address '10.1.3.74' -set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mapping sonos-4 mac-address '48:a6:b8:48:a8:e5' +set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mapping sonos-4-livingroom ip-address '10.1.3.74' +set service dhcp-server shared-network-name IOT subnet 10.1.3.0/24 static-mapping sonos-4-livingroom mac-address '48:a6:b8:48:a8:e5' # Video VLAN set service dhcp-server shared-network-name VIDEO authoritative