Replies: 4 comments 11 replies
-
Just as a tip, you can see the more-or-less current list of ports and protocols in our Dockerfile (permalink to the current version as of the 9th of July 2021). |
Beta Was this translation helpful? Give feedback.
-
I would like to ask you a question. Did you try to start AG with not 'root' user? |
Beta Was this translation helpful? Give feedback.
-
@szhu25 hi, which program listens to the ports exactly - 784 and 5443? If believe this manual, then it served, draw your attention to the past tense in the article, for DoQ, but now they have abandoned this port and use 853/udp (and for DoT 853/tcp). Is port 784/udp now needed in your rules if it is no longer used? Based on this manual, the port is 5443 for DNSCrypt, but the wiki page says that the default port is 443? |
Beta Was this translation helpful? Give feedback.
-
I just created some firewall client profiles for ufw and firewalld, thought I probably should share it to the community.
Why do i want to create a "profile" for AdGuard Home? Because in that sense, you'll have your firewall list cleaner (instead of a list of ports, you'll simply see "AdGuard Home xxx")
Warning: The profile does not contain port for AdGuard Home management interface
There are three profiles for each firewall:
AdGuard Home DNS-Only - service ports for regular DNS, DNS-over-HTTPS, DNS-over-TLS, DNS-over-QUIC and DNSCrypt server
AdGuard Home DHCP-Only - service ports for DHCP
AdGuard Home Full - service ports for all services
Profiles:
FirewallD:
DNS-Only
DHCP-Only
Full
ufw:
How to use:
FirewallD:
/etc/firewalld/services
as.xml
sudo firewall-cmd --new-service-from-file=myservice.xml
(replacemyservice.xml
with whatever filename you put) and other arguments such as--permanent
--zone
ufw:
/etc/ufw/applications.d/adguard-home
.sudo ufw app info 'AdGuard Home Full'
.sudo ufw allow 'AdGuard Home Full'
orsudo ufw allow 'AdGuard Home DNS-Only'
orsudo ufw allow 'AdGuard Home DHCP-Only'
Beta Was this translation helpful? Give feedback.
All reactions