I’m trying to set up a media server Qube and am trying to figure out how to expose it to my network. I’m looking at the documentation (Firewall | Qubes OS), which gives an example where
“we can take the use case of a web server listening on port 443 that we want to expose on our physical interface eth0, but only to our local network 192.168.x.0/24.”
This sounds like exactly what I’m looking for. When I get to this command,
“dport” is not recognized. I assume this means destination port, and I scoured the man page for iptables and see no reference to setting the destination port. Is this method perhaps out of date?
Or perhaps a better question to ask would be, is this the proper way to go about exposing a media server from one Qube to my LAN?
This implementation only works one way (external → sys-net → qube) and for 1 port at a time.
If you create a new policy rule in the same file and do the same thing for the required UPnP port, it may work but not sure.
Edit: Forgot UPnP was UDP. You can’t use this since it’s only working with TCP.