Apple tv-firewall prolem?
In Leopard 10.5.1 Itunes sees the Apple Tv.
With the firewall on set to allow only essential services and Itunes added to appliocations attempting to sync a movie I'm told to make sure port 3689 needs to be opened, but no information other than that.
If I turn the firewall off I can sync the movie, but have been unable to stream one. I can get the "source" to appear on Apple Tv, but it dims after attempting to access it.
Seems odd!
Sharing is enabled and I have repaired permissions also.
Using Airport extreme
After installing 10.5.1 I had the same problem. I then decided to reinstall 10.5. without any additional software on my iMac and I resetted my AppleTV to factory settings. After doing this I could use my Apple TV with 10.5. but it still worked erratic somehow.
All the problems completely went away after I have changed the configuration of my Airport Extreme. Please try the following:
1. Open AirPort Utility, located in the Utilities folder inside the Applications on a Mac, or in
Start > All Programs > AirPort on a Windows computer.
2. Select your base station from the list, and then enter the base station password.
3. Click the Advanced button, and then click IPv6 Firewall
Deactivate “Allow Teredo tunnels” and “Allow incoming IPSec authentication”
4. Restart the Airport Extreme
Please let me know if it works for you.
Ody
Similar Messages
-
Apple's Firewall opens the wrong ports!
This is a follow up question to a problem posted in another forum here. There are a couple of screenshots in the last post that illustrate the problem.
In System Preferences > Sharing > Firewall, checking Apple Remote Desktop opens TCP and UDP ports 3238. The problem is that Apple Remote Desktop needs ports 3283 (not 3238 - note the last two digits are transposed) and 5900. I've already worked around this issue by creating a new firewall entry that opens the correct ports, but I'd really like to get my Sharing Preferences corrected. Plus it bothers me that I can't block port 3238 by unchecking Apple Remote Desktop since that will prevent ARD from working, even though it opens the wrong ports.
This isn't really an Apple Remote Desktop problem, it's something wrong with the firewall in this system's version of OS X. Any idea how I can fix it, other than the ugly workaround I'm using, and short of reinstalling OS X?Editing the .plist file is easy with xcode's Property List Editor, which I just installed. However, before I did that I simply copied a "correct" /Library/Preferences/com.apple.sharing.firewall.plist file from another computer. That was even easier
-
Instructions on beefing up Apple's firewall
Hi all,
I read today some detailed instructions on how to improve the security offered by OS X's firewall...
...the problem is I stupidly didn't save the page as a bookmark or print it out, and i can't for the life of me remember where I read it...it may or may not have been in a post in one of the apple forums, or somewhere else! All I can remember is that it was fairly technical and required a lot of work in Terminal.
I don't suppose someone either knows what on earth I'm talking about, or of other such instructions they could point me to?
Cheers,
NigeI can't point you to what you read, but I suspect it had to do with using ipfw. Put ipfw in the Search Discussions box and you will get a lot of hits.
Have a nice day.
Boyd -
I am running itunes 7.5.0.20 on a windows vista machine with ATV running via wireless connection through an Airport.
I am able to find the ATV and connect and start to upload items to it, but after a certain amount of time I get an error saying that itunes can not connect make sure your firewall will allow connections from port #. I can close itunes and start it back up, and it will work again for awhile, then I get the same error. I have to do this all the time.
I have uninstalled itunes and did a factory reset on the ATV, but it still happens.
This makes it impossible to stream. I am able to connect the ATV to my pc, and start the stream, but after 10-15 mins I lose the connection, and have to restart itunes.
Any idea's on how to fix this problem?
Thanks for your help & time.If it works for a while and then stops it isn't a firewall problem. Next time it happens check the Apple TV and see if it lost its network connection. If it keeps dropping its network connection but you don't have any other problems with your network, the Apple TV may have a bad NIC.
-
What ports need to be opened from apple's firewall?
I googled that qmaster uses port 10012 tcp&udp, but what ports need to be open for Qadministrator and Batch Monitor?
They didn't seem to work just with 10012.
Is there any documents about this from apple?
Idea of just leaving firewall off sounds like Microsoft in te 90s'.
And even they have made an interactive firewall that asks you to open a port when some application tries to use it.
Well, these fcp applications are sooo PRO...On the Qmaster system prefs pane, turn on the "Show Qmaster status in menu bar" option in the advanced tab.
Then click the Qmaster icon on the menu bar, and it will show you all active Qmaster services, and their TCP port. You would need that port open. You need to do this on every computer on the cluster.
In your setup, are all the computers on the same subnet? Although you may be on a large network, you can rope off your systems into their own sub network, with a master firewall and avoid this type of problem. Each computer will have a different port, and that port will change every single time you start and stop the service. The TCP port will fall between 40000 and 65536 (the highest port ranges).
So, again I recommend protecting the network which will protect all the systems universally. But try setting the TCP ports listed on all the service nodes, and remember that those will change whenever you start and stop the service. (I'm not sure if the port will change after a reboot as well.)
Good luck -
How can I use Internet Sharing with Firewall on ?
Hi,
My PowerMac G5 is connected to the internet via Ethernet. I share the connection to a Powerboog via Airport using internet sharing. Everything is working fine except when I turn the Firewall on. After reading http://docs.info.apple.com/article.html?artnum=107653 I tried opening port 443 but it still does'nt work. I'd like to be able to use internet sharing with the firewall on. Anyone can help me ? Thanks!Hmmm, how curious... I never had to do that in 10.4.7 or 10.4.8... the only ones I ever tried Internet Sharing with.
I'm wondering if turning the Firewall on after the Internet sharing is what's doing it? Just for kicks you might try turning off Internet Sharing, then Firewall on, then turn on Internet Sharing.
If that doesn't work, then I'd personally try trashing...
/Library/Preferences/com.apple.sharing.firewall.plist
Then reboot and try the Firewall again. -
Need info about security, normal Apple events, & indicators of being hacked
I've been trying to learn more about signs of hackage because of odd behavior by my MBP. From what I've read, the consensus seems to be that the problems people experience and fear are hack-symptoms are more likely due to other reasons.
Here's the long story (for the short story, jump to the last paragraph): I've had Apple's on-board Firewall enabled since day one in Stealth Mode and all Sharing settings have always been Off. I recently test-drove a comprehensive 3rd party Firewall also but the log reported no suspicious attempts (aside from the normal amount of people just trying to connect or to piggyback on my bandwidth every .20th of a second that it's active). As the sole authorized user and sole resident in my home, I didn't config the system with myself as a User separate from the Admin account.
But I am having a recurring series of events that seems hack-like -- can anybody help me find the cause and a devise a fix?
Sometimes when I am online I notice a decline in my bandwidth -- based on the quality of my experience, not on a running monitor) for no apparent reason. When this occurs, I have learned to try two things: First, I Speed Test my ISP (sometimes it runs poorly); second, I disconnect and run Disk Utility. If my ISP isn't to blame, my Disk Utility's Permission Repair always reports the following (but, normally, permission repair has either no results or they are different, not security-related):
Repairing permissions for “XXX”
Determining correct file permissions.
Permissions differ on ./private/var/log/secure.log, should be -rw------- , they are -rw-r-----
Owner and group corrected on ./private/var/log/secure.log
Permissions corrected on ./private/var/log/secure.log
Maybe I'm being paranoid but the combination of my online-experience declining and the security-related perm reports generally seem to occur after the barrage of connection attempts from a single DNS stop for a longish period of time, as if there's been success at entry. Until this pattern emerged, I didn't feel vulnerable so I haven't kept records of these times/DNS/repair logs. Another puzzle-piece is that it happens when I've been running my computer for several days using only sleep mode, not full shut down; running a browser continuously (both on- and off-line) for most of that time; and especially after been online for a long time without disconnect.
I'm 98% certain that my secure.logs in Console once contained readable data but one recent day, just after I'd rashly renamed my connection node ScrewYouHacker, I disconnected/repaired (with report of same security changes) only to discover they had mysteriously (or totally coincidentally) become empty -- and my main secure.log plus several of the 5 secure.log.X.gz files became unavailable to me, reporting I (the admin account) didn't have permission to read them. I cannot remember if this was the case before or not but I believe at least one of the files contained data I could read.
My Activity Monitor reports:
4199 mdimport nobody 0.00 3 4.04 MB 44.98 MB Intel
273 usbmuxd nobody 0.00 2 432.00 KB 26.99 MB Intel
63 WindowServer windowserver 1.70 3 90.08 MB 454.81 MB Intel
There's a lot in the Logs I do recognize but lots and lots I'm not familiar with: For example, "nobody" is not the name of any of my drives/accounts/or any Apple event known to me, so causes me concern. I can post more of the stuff that makes me uncomfortable (such as pages being written from external drives during times I was connected but away from my sleeping cpu or when my connection trying to reestablish when I manually disconnect and with no data-seeking sites/apps running on my end) if any of this seems the result of invasion but I'm hoping a simpler explanation will put my mind at rest.
I Clone my entire System quarterly, and did so before I noticed any of this happening, but it was not specially password-protected so is probably just as compromised (or not) as any other available recently-mounted partition on my external drives. I manually back-up only changed files daily so quite likely don't have any retrievable System logs from this period to check or compare against.
To sum my question up in a few words: Does the cycle of bandwidth decline followed by that security-related permissions change imply invasion by hacker? If so, how can I trace what files/apps/devices have been compromised (read or taken)? If not, what does it imply and is a fix crucial (as in, typical Apple self-repair or sign of failing HD drive)? BTW, I'm running a secure wireless Novotel connection card on my MBP with 2gigs RAM.
Thank you all!Thanks for the quick reply, rccharles.
I don't have a wireless network or a router. I connect via a Novotel Wireless modem/card -- wireless because it enables me to connect to the Sprint/Nextel 3G/4G network on their towers but it is a stand-alone USB device on my end. Multiple conversations with their tech staff assured me that it is not penetrable, in that my "bubble-of-connectivity" cannot be piggybacked upon by others nearby, although no password is used, because there is no network in the traditional sense. When I connect online, it's like making a cell-phone call (which isn't to say it's not hackable just that it's a different set-up). This seems to be supported by the fact that the incoming connection attempts I see on Console trace back to DNS locations all over the world not in my own dense neighborhood. I have no network name and my identity does not show up on the AirPort list with all of my neighbors. The SprintSmartView connection software is completely dumb (at least on the standard interface) because it clears all records upon disconnect (it doesn't even keep a running tally of overall connection time, or in/out loads, only displaying that data while connected during a single-session).
I can't switch to a cable connection because, as noted above, I already employ a hard, direct connection to my modem. For me, "wireless" refers to the provider method not my personal network. I haven't used a network for any service (music, printing, web) during this past year.
I realize you didn't suggest this, Robert, but I just wanted to mention that I have no other connection options -- I've never had cable tv and no longer have a landline so switching from my current method to something else isn't feasible. LittleSnitch probably is a good investment; still, I wish there was a Freeware equivalent.
RE usbmuxd: USB Multiplex Daemon. This bit of software is in charge of talking to your iPhone or iPod Touch over USB and coordinating access to its services by other applications: I do have an iPod but it's not a Touch model; don't have an iPhone -- my Palm mobile is my only non-Apple device, but it has touchscreen technology so that might correlate.
A web search of my Disk Utility Permissions Repair report phrasing didn't uncover enough information for me to determine if the frequent ./private/var/log/secure.log fixes indicate either an invasion or some impending System doom I could at this point prevent.
Here's another set of data that I don't know how to interpret -- but, because I was not using my sleeping but web-connected computer at the time (lid open; display and HD in sleep mode via Energy Saver settings; display calm, not showing any waking/sleeping/waking), the writing of pages/images seems strange (again, I have no automated backup software running):
Nov 19 18:14:18 pp-computer kernel[0]: Started CPU 01
Nov 19 18:14:18 pp-computer kernel[0]: IOBluetoothHCIController::restartShutdownWL this is a wake from sleep
Nov 19 18:14:18 pp-computer kernel[0]: System Wake
Nov 19 18:14:18 pp-computer kernel[0]: IOUSBWorkLoop::closeGate - interrupt Thread being held off
Nov 19 18:15:08 pp-computer kernel[0]: hibernate image path: /var/vm/sleepimage
Nov 19 18:15:08 pp-computer kernel[0]: sizeof(IOHibernateImageHeader) == 512
Nov 19 18:15:08 pp-computer kernel[0]: Opened file /var/vm/sleepimage, size 2147483648, partition base 0xc805000, maxio 400000
Nov 19 18:15:08 pp-computer kernel[0]: hibernate image major 14, minor 2, blocksize 512, pollers 3
Nov 19 18:15:08 pp-computer kernel[0]: hibernateallocpages flags 00000000, gobbling 0 pages
Nov 19 18:16:28 pp-computer kernel[0]: System SafeSleep
Nov 19 18:16:31 pp-computer kernel[0]: hibernatepage_listsetall start
Nov 19 18:16:31 pp-computer kernel[0]: hibernatepage_listsetall time: 205 ms
Nov 19 18:16:31 pp-computer kernel[0]: pages 517541, wire 69979, act 276409, inact 65477, zf 1638, could discard act 19572 inact 84466
Nov 19 18:16:31 pp-computer kernel[0]: hibernatepage_listsetall found pageCount 517541
Nov 19 18:16:31 pp-computer kernel[0]: IOHibernatePollerOpen, mlget_interruptsenabled 0
Nov 19 18:16:31 pp-computer kernel[0]: IOHibernatePollerOpen(0)
Nov 19 18:16:31 pp-computer kernel[0]: writing 516171 pages
Nov 19 18:16:31 pp-computer kernel[0]: image1Size 118063104
Nov 19 18:16:31 pp-computer kernel[0]: all time: 19946 ms, comp time: 3087 ms, deco time: 0 ms,
Nov 19 18:16:31 pp-computer kernel[0]: image 875999232, uncompressed 1688096768 (412133), compressed 868350256 (51%), sum1 79756835, sum2 bb29c145
Nov 19 18:16:31 pp-computer kernel[0]: hibernatewriteimage done(0)
Nov 19 18:16:31 pp-computer kernel[0]: sleep
Nov 19 18:16:31 pp-computer kernel[0]: IOUSBWorkLoop::closeGate - interrupt Thread being held offEnabling XMM register save/restore and SSE/SSE2 opcodes
Nov 19 18:16:31 pp-computer kernel[0]: Started CPU 01
Nov 19 18:16:31 pp-computer kernel[0]: IOBluetoothHCIController::restartShutdownWL this is a wake from sleep
My MBP has no obvious problems with Sleep or Wake, as seems to be the most common complaints connected to much of this language. This type of cycle reported constantly from the whole 3hour block I was not using the CPU. Since my modem is a USB device, maybe that is keeping things cycling even though the display appears asleep (off, not screen saver mode) and hard disk is definitely asleep (per sound & temperature)? I should add to my previous disclosure that I have a Bluetooth Apple mouse, among other devices, and my BT settings have been on Discoverable, which didn't seem to make me vulnerable but I've since turned that off since all my devices are paired. I assumed for everything that was paired with my MBP, the device name would appear in my Allowable list...
Thanks BDAqua -- just saw your post. That puts my mind at rest. What else, if anything, should I be looking at to confirm integrity? Is Apple's Firewall enough or is a 3rd party package really a necessity? -
Third-party firewall? What third-party firewall?
I was setting up Internet Sharing so I could use my G5 as a base station, and my remote system wasn't getting to the Internet; while it saw and connected to the AirPort network, it couldn't seem to get a valid DHCP lease (the IP address was self-assigned, 169.254.x.x). Personal Web Sharing is checked in the Firewall tab of Sharing prefs.
As an experiment, I turned off the firewall in the G5, and my remote system got a DHCP lease. I then went to turn the firewall back on (to see what would happen), but instead encountered a message telling me that I couldn't due to the presence of a third-party firewall, and at this time, the Tiger firewall is "unavailable".
As far as I know, I have no third-party firewall installed. Is there some way I can identify and disable this mystery firewall? I am Terminal-friendly.
This is the only thing I can think of. I have Virtual PC 7 running a copy of Windows 2000 so I can use my company's pathologically-locked-down VPN connection. The software they gave me installed a firewall, this was inside my W2K "virtual PC" and I can't imagine how it's affecting my Mac OS. I have tried shutting the virtual PC down and quitting VPC but I get the same error. Nonetheless I wanted to mention it.
TIA,
Jeff
PowerMac G5 Dual 2.3GHz Mac OS X (10.4.7) 2.5GB RAM Radeon 9600 videoEnter the following into the Terminal:
sudo ipfw flush
or drag the item /Library/Preferences/com.apple.sharing.firewall.plist to the desktop followed by restarting the computer. Both steps may need to be followed.
(21249) -
Apple TV does not connect to my iTunes Library
Apple TV has worked perfectly for the past couple of years but over the past couple of months the same message keeps appearing "could not connect to "my" Library". I have checked the following:
iTunes is up to date
Home sharing is turned 'on' on computer and Apple TV
Wi-fi is on and signal strength is very good
Computer and Apple TV is on the same network
Restarted computer, router and Apple TV
Firewall is turned off
Apple TV has been reset
Apple TV works for You Tube and TV channel apps on my iPhone and iPad
The Apple TV device is a 2 or 3.
Computer is a Mac and is only a few months old
Tired connecting with Ethernet cable which made no difference.
What else could it be?????Hey mustangtony,
Thanks for the question. If I understand correctly, the Apple TV is having trouble with Home Sharing. It looks like you have already done some troubleshooting. I would recommend that you read this article, there are a few steps in here you have not mentioned trying.
Troubleshooting Home Sharing - Apple Support
Thanks for using Apple Support Communities.
Have a good one,
Mario -
How do I open up a specific port in the Application Level Firewall?
Currently, my system blocks port 2336 and I want to open this up. To be precise: port 2336 is listening on the local system, both on 127.0.0.1 and its 192.168.x.x address, but no client on the LAN can connect to port 2336.
IPFW and PF are not running. When I turn ALF off in System Preferences, I can connect to port 2336 from a LAN client. So ALF is blocking port 2336. How can I open this up?Linc, thatnks for the reply. I dived into this a bit more and studied the setup of the ALF. I find it confusing, on the one hand it is mentioned in the packet filter firewall setup in /etc/pf.anchors/com.apple:
# Application Firewall anchor point.
anchor "250.ApplicationFirewall/*"
OTOH, such an entry is nowhere to be found on my system and the ALF command socketfilterfw somehow seems to suggest it is a socket filter and not a packet filter and that it is indeed working at a different level, namely the level that decides which executable is allowed to listen on which socket (port).
I am trying to find out what program is being started when I connect to port 2336 (service appleugcontrol according to /etc/services) so I can enable it with socketfilterfw. But I can't find out which program I have to enable.
I can turn off my ALF altogether, but I am used to running a firewall on my system, even if it is behind a NAT and ports are not as easily reached from the outside. I want my internal network to have some security too. In the 10.6 days, that was ipfw. Now it is PF which is off by default. I tried IceFloor to manage the PF firewall (so I can turn the ALF off) but the result was negative. Whatever I put in the settings, it blocked about everything.
The reason I want to open this port is that without it server-side file tracking for mobile home sync does not work and mobile home syncing by clients becomes very slow. Server-side file tracking for mobile home syncing requires that the FileSyncAgent on the client is able to create a SSH connection to port 2336 on the server. But as it stands now, ALF is blocking that. -
I suddenly can't access the firewall tab in the sharing preferences neither
After doing this for hundreds ot times I tried to connect with an Ethernet connection to another computer and could not do it. I went to system preferences/ sharing and found the firewall tab is not accessible and when I try to activate the services it doesn’t respond and are not activated even though they where once.
I tried restoring permissions but it did not work.Dear BDAqua:
Thank you. Already did. But it did not work out and the file /Library/Preferences/com.apple.sharing.firewall.plist is not anymore.
I must also say that I can not start any of the sharing services (that where already activated) because when I click the start button, nothing happens.
So I also did the same with the files located in: preferences/SystemConfiguration
preferences.plist
NetworkInterfaces.plist
com.apple.nat.plist
com.apple.airport.preferences.plist
And they are there now again but the problem persists.
Thank you for trying to help me -
UNIX command for disabling Firewall in Leopard?
I'd like to use ARD to send a unix command to all my Macs running Leopard that will set the OS's application firewall to "allow all incoming connections." I believe that's the default setting, but I've run into some machines that are setting specific access - not sure how, don't really care, just want to turn it off.
I've been reading up on /usr/libexec/ApplicationFirewall/socketfilterfw but the Help seems incomplete and I'm not sure this will accomplish what I'm after.defaults write /Library/Preferences/com.apple.sharing.firewall state -boolean No
followed by a reboot works like a charm. thanks for you help. -
Getting something out of the firewall list
I installed Adobe cs3 and then uninstalled it and now I have Adobe Version Cue CS3 Server in my firewall list right under Personal File Sharing.
Is there any way to get it gone seeing as I don't use it or want it?If all else fails, trash...
/Library/Preferences/com.apple.sharing.firewall.plist
/Users/nnnnLibrary/Preferences/com.apple.internetconnect.plist
/Library/Preferences/SystemConfiguration/preferences.plist
Then reboot and setup your Networks again
Of course you don't have to Trash them... you can drag them to the Desktop for replacement if it doesn't work. -
Firewall unavailable with OS 10.4.7
When I try to view/set firewall settings in System Preferences I get a warning message "Other firewall software is running on your computer...".
This was a problem with an earlier OS X upgrade and seems to have happned again when I recently upgraded to 10.4.7 on a G5.
I have tried trashing
/Library/Preferences/com.apple.sharing.firewall.plist
and repairing permissions but the problem remains.
I am not running any other firewall software but was running Little Snitch (which I have disabled).
Odd that it has not happened with a Powerbook G4 that was also upgraded to 10.4.7Open the Terminal application in your /Applications/Utilities/ folder and enter the following:
sudo ipfw flush
Press Enter and type in your administrator password; nothing will appear onscreen while it is being typed. When done, press Enter again and turn the firewall back on from System Preferences.
(13800) -
Mac OS X 10.8.2's firewall not enabled by default?
Hello.
Is it me or is Mountain Lion's firewall not enabled by default? I didn't check in the preinstalled 10.7.x before I upgraded to it. I find that weird and puzzled why Apple did that if that was by design.
Thank you in advance.fowlerryan wrote:
Apple's firewall is disabled by default in mountain lion. I think this might be because of its new appl protection thing. Once the firewall is activated it will only open apps which are downloaded from the app store without questioning you. If you download an app from the web and have the firewall on, you will have to right click on the app and click open (for first time use only) to let the firewall know this is a safe app that you chose to download.
It may seem not having firewall on by default is silly but I think there would be far more complaints by people on here that they cant open their apps that they downlaoded from the web.
Hope it helps!
Ryan
Sheesh, and Apple is trying to make our newer Mac OS X systems more vulnerable like Windows before it came with firewalls enabled.
Maybe you are looking for
-
New "Targets and Devices..." dialog does not open in Project window
Hi I am trying to add an FPGA device in my project, however when I right click on Project, and go to New -> Targets and Devices...It appears as though it is busy (the mouse icon becomes the hourglass) and after while it just goes back to normal and n
-
OT: Monitor calibration with a gradient/varying values
This is sort of off topic, but maybe someone knows. I bought a new LCD monitor which I thought was a reasonably decent quality. I did the regular Apple calibration. But the monitor clearly has more contrast at the top, and less at the bottom. I can s
-
ICloud says my iTunes purchased video is 'ineligible'
I have a bunch of music videos purchased on iTunes, and one of them doesn't get recognized: "Mas que Nada (feat. the Black Eyed Peas)" by Serio Mendes. The video is within the size limit and I have several similar ones from the same artist that work
-
I am trying to synch things from my mac to my iphone. My Apple screen name is apparently [email protected] but my iphone thinks my screenname is xxxxxx. I can download things on my imac with [email protected] but I am unable to update things on my
-
I see in the upgrade doc where to upgrade to 5.2.2 from 5.0.3, you must first downgrade to 5.0.2. For available files, I see under 5.1 a 5.0.2 upgrade helper to get to 5.1. Has anybody used this help, or have a recommendation on downgrading to 5.0.