rpm packaging - mention the firewall in the README's
This commit is contained in:
parent
ed140426ab
commit
411a831338
|
@ -92,14 +92,34 @@ New installs
|
||||||
sudo systemctl enable zoneminder
|
sudo systemctl enable zoneminder
|
||||||
sudo systemctl start zoneminder
|
sudo systemctl start zoneminder
|
||||||
|
|
||||||
9. The Fedora repos have a ZoneMinder package available, but it does not
|
9. Optionally configure the firewall
|
||||||
support ffmpeg or libvlc, which many modern IP cameras require. Most users
|
|
||||||
will want to prevent the ZoneMinder package in the Fedora repos from
|
All Redhat distros ship with the firewall enabled. That means you will not
|
||||||
overwriting the ZoneMinder package in zmrepo, during a future dnf update. To
|
be able to access the ZoneMinder web console from a remote machine until
|
||||||
prevent that from happening you must edit /etc/yum.repos.d/fedora.repo
|
changes are made to the firewall.
|
||||||
and /etc/yum.repos.d/fedora-updates.repo. Add the line "exclude=zoneminder*"
|
|
||||||
without the quotes under the [fedora] and [fedora-updates] blocks,
|
What follows are a set of minimal commands to allow remote access to the
|
||||||
respectively.
|
ZoneMinder web console and also allow ZoneMinder's ONVIF discovery to
|
||||||
|
work. The following commands do not put any restrictions on which remote
|
||||||
|
machine(s) have access to the listed ports or services.
|
||||||
|
|
||||||
|
sudo firewall-cmd --permanent --zone=public --add-service=http
|
||||||
|
sudo firewall-cmd --permanent --zone=public --add-service=https
|
||||||
|
sudo firewall-cmd --permanent --zone=public --add-port=3702/udp
|
||||||
|
sudo firewall-cmd --reload
|
||||||
|
|
||||||
|
Additional changes to the firewall may be required, depending on your
|
||||||
|
security requirements and how you use the system. It is up to you to verify
|
||||||
|
these commands are sufficient.
|
||||||
|
|
||||||
|
10. Access the ZoneMinder web console
|
||||||
|
|
||||||
|
You may now access the ZoneMinder web console from your web browser using
|
||||||
|
an appropriate url. Here are some examples:
|
||||||
|
|
||||||
|
http://localhost/zm (works from the local machine only)
|
||||||
|
http://{machine name}/zm (works only if dns is configured for your network)
|
||||||
|
http://{ip address}/zm
|
||||||
|
|
||||||
Upgrades
|
Upgrades
|
||||||
========
|
========
|
||||||
|
|
|
@ -107,6 +107,35 @@ New installs
|
||||||
|
|
||||||
Then point your web browser to http://<machine name or ip>/zm
|
Then point your web browser to http://<machine name or ip>/zm
|
||||||
|
|
||||||
|
9. Optionally configure the firewall
|
||||||
|
|
||||||
|
All Redhat distros ship with the firewall enabled. That means you will not
|
||||||
|
be able to access the ZoneMinder web console from a remote machine until
|
||||||
|
changes are made to the firewall.
|
||||||
|
|
||||||
|
What follows are a set of minimal commands to allow remote access to the
|
||||||
|
ZoneMinder web console and also allow ZoneMinder's ONVIF discovery to
|
||||||
|
work. The following commands do not put any restrictions on which remote
|
||||||
|
machine(s) have access to the listed ports or services.
|
||||||
|
|
||||||
|
sudo iptables -A INPUT -p tcp --dport 80 -j ACCEPT
|
||||||
|
sudo iptables -A INPUT -p tcp --dport 443 -j ACCEPT
|
||||||
|
sudo iptables -A INPUT -p udp --dport 3702 -j ACCEPT
|
||||||
|
iptables-save | sudo tee /etc/sysconfig/iptables
|
||||||
|
|
||||||
|
Additional changes to the firewall may be required, depending on your
|
||||||
|
security requirements and how you use the system. It is up to you to verify
|
||||||
|
these commands are sufficient.
|
||||||
|
|
||||||
|
10. Access the ZoneMinder web console
|
||||||
|
|
||||||
|
You may now access the ZoneMinder web console from your web browser using
|
||||||
|
an appropriate url. Here are some examples:
|
||||||
|
|
||||||
|
http://localhost/zm (works from the local machine only)
|
||||||
|
http://{machine name}/zm (works only if dns is configured for your network)
|
||||||
|
http://{ip address}/zm
|
||||||
|
|
||||||
Upgrades
|
Upgrades
|
||||||
========
|
========
|
||||||
|
|
||||||
|
|
|
@ -92,6 +92,35 @@ New installs
|
||||||
sudo systemctl enable zoneminder
|
sudo systemctl enable zoneminder
|
||||||
sudo systemctl start zoneminder
|
sudo systemctl start zoneminder
|
||||||
|
|
||||||
|
9. Optionally configure the firewall
|
||||||
|
|
||||||
|
All Redhat distros ship with the firewall enabled. That means you will not
|
||||||
|
be able to access the ZoneMinder web console from a remote machine until
|
||||||
|
changes are made to the firewall.
|
||||||
|
|
||||||
|
What follows are a set of minimal commands to allow remote access to the
|
||||||
|
ZoneMinder web console and also allow ZoneMinder's ONVIF discovery to
|
||||||
|
work. The following commands do not put any restrictions on which remote
|
||||||
|
machine(s) have access to the listed ports or services.
|
||||||
|
|
||||||
|
sudo firewall-cmd --permanent --zone=public --add-service=http
|
||||||
|
sudo firewall-cmd --permanent --zone=public --add-service=https
|
||||||
|
sudo firewall-cmd --permanent --zone=public --add-port=3702/udp
|
||||||
|
sudo firewall-cmd --reload
|
||||||
|
|
||||||
|
Additional changes to the firewall may be required, depending on your
|
||||||
|
security requirements and how you use the system. It is up to you to verify
|
||||||
|
these commands are sufficient.
|
||||||
|
|
||||||
|
10. Access the ZoneMinder web console
|
||||||
|
|
||||||
|
You may now access the ZoneMinder web console from your web browser using
|
||||||
|
an appropriate url. Here are some examples:
|
||||||
|
|
||||||
|
http://localhost/zm (works from the local machine only)
|
||||||
|
http://{machine name}/zm (works only if dns is configured for your network)
|
||||||
|
http://{ip address}/zm
|
||||||
|
|
||||||
Upgrades
|
Upgrades
|
||||||
========
|
========
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue