Bug 28571

Summary: vlc can't see dlna server (minidlna)
Product: Mageia Reporter: Pe Alfa <pealfa>
Component: RPM PackagesAssignee: Mageia Bug Squad <bugsquad>
Status: RESOLVED WORKSFORME QA Contact:
Severity: normal    
Priority: Normal CC: davidwhodgins, fri, lewyssmith, ouaurelien
Version: 8Keywords: NEEDINFO
Target Milestone: ---   
Hardware: x86_64   
OS: Linux   
See Also: https://bugs.mageia.org/show_bug.cgi?id=28014
Whiteboard:
Source RPM: CVE:
Status comment:

Description Pe Alfa 2021-03-09 21:23:54 CET 
Hi!
vlc-upnp doesn't work (Mageia 7 and Mageia 8). I can't see files on my minidlna server but that's fine on Debian (Debian 10.8 and Ubuntu).
The firewall is the problem. If I put down firewall and so vlc can see the files and works fine.
Server minidlna listens at port 8200. All others sistems (Windows, Android, Linux) can use it.

I do:

netstat -puta
tcp        0      0 lenovo.local:49152      0.0.0.0:*               LISTEN      9781/vlc            
tcp   4259496      0 lenovo.local:43850      raspberrypi.lo:trivnet1 ESTABLISHED 9781/vlc  
tcp6       0      0 lenovo.pealfa.duc:49152 [::]:*                  LISTEN      9781/vlc            
tcp6       0      0 [::]:49153              [::]:*                  LISTEN      9781/vlc            
udp        0      0 localhost:39022         0.0.0.0:*                           9781/vlc  
udp        0      0 224.0.0.255:sapv1       0.0.0.0:*                           9781/vlc            
udp        0      0 239.255.255.255:sapv1   0.0.0.0:*                           9781/vlc            
udp        0      0 239.195.255.255:sapv1   0.0.0.0:*                           9781/vlc            
udp        0      0 sap.mcast.net:sapv1     0.0.0.0:*                           9781/vlc            
udp        0      0 0.0.0.0:ssdp            0.0.0.0:*                           9781/vlc  
udp        0      0 0.0.0.0:45614           0.0.0.0:*                           9781/vlc            
udp        0      0 224.0.0.251:mdns        0.0.0.0:*                           9781/vlc 
...

I cuoud use vlc-upnp in older Mageia versions. 

Thanks

Pepe Álvarez
Comment 1 Lewis Smith 2021-03-12 21:43:16 CET 
Thank you for the report, and sorry for the trouble.
> The firewall is the problem.
> If I put down firewall and so vlc can see the files and works fine
> I could use vlc-upnp in older Mageia versions
I rather think we changed firewall software for M7.
I am CC'ing other people who know more than me about this subject.

Component: Release (media or process) => RPM Packages
CC: sysadmin-bugs => davidwhodgins, lewyssmith, ouaurelien

Comment 2 Dave Hodgins 2021-03-12 22:50:40 CET 
For vlc-upnp, the following ports need to be opened in the firewall ...
$ grep -e sapv1 -e ssdp -e mdns /etc/services 
ssdp            1900/tcp                # SSDP
ssdp            1900/udp                # SSDP
mdns            5353/tcp                # Multicast DNS
mdns            5353/udp                # Multicast DNS
mdnsresponder   5354/tcp        noclog  # Multicast DNS Responder IPC
mdnsresponder   5354/udp        noclog  # Multicast DNS Responder IPC
sapv1           9875/tcp                # Session Announcement v1
sapv1           9875/udp                # Session Announcement v1

See https://doc.mageia.org/mcc/3/en/content/drakfirewall.html for how to specify
specific tcp and udp ports in the advanced part of the mcc firewall setup.
Comment 3 Morgan Leijström 2021-03-13 16:14:20 CET 
Current documentation:
https://doc.mageia.org/mcc/8/en/content/mcc-security.html#drakfirewall

CC: (none) => fri

Comment 4 Aurelien Oudelet 2021-03-13 17:31:52 CET 
(In reply to Dave Hodgins from comment #2)
> For vlc-upnp, the following ports need to be opened in the firewall ...
> $ grep -e sapv1 -e ssdp -e mdns /etc/services 
> ssdp            1900/tcp                # SSDP
> ssdp            1900/udp                # SSDP
> mdns            5353/tcp                # Multicast DNS
> mdns            5353/udp                # Multicast DNS
> mdnsresponder   5354/tcp        noclog  # Multicast DNS Responder IPC
> mdnsresponder   5354/udp        noclog  # Multicast DNS Responder IPC
> sapv1           9875/tcp                # Session Announcement v1
> sapv1           9875/udp                # Session Announcement v1
> 
> See https://doc.mageia.org/mcc/3/en/content/drakfirewall.html for how to
> specify
> specific tcp and udp ports in the advanced part of the mcc firewall setup.

A request for integrating such functionality in drakefirewall GUI is here:
https://bugs.mageia.org/show_bug.cgi?id=28014

See Also: (none) => https://bugs.mageia.org/show_bug.cgi?id=28014

Comment 5 Lewis Smith 2021-03-13 20:55:36 CET 
Thank you all the experts on this!
@Pe Alfa : please report back when you have followed the advice.
Comment 6 Pe Alfa 2021-03-15 19:37:50 CET 
Thanks, but that's not enough for me.
vlc could see once time. And it took a long time.
All the others systems (android and debian) can see inmediatly the dlna server.
Comment 7 Aurelien Oudelet 2021-03-17 15:36:40 CET 
(In reply to Dave Hodgins from comment #2)
> For vlc-upnp, the following ports need to be opened in the firewall ...
> $ grep -e sapv1 -e ssdp -e mdns /etc/services 
> ssdp            1900/tcp                # SSDP
> ssdp            1900/udp                # SSDP
> mdns            5353/tcp                # Multicast DNS
> mdns            5353/udp                # Multicast DNS
> mdnsresponder   5354/tcp        noclog  # Multicast DNS Responder IPC
> mdnsresponder   5354/udp        noclog  # Multicast DNS Responder IPC
> sapv1           9875/tcp                # Session Announcement v1
> sapv1           9875/udp                # Session Announcement v1
> 
> See https://doc.mageia.org/mcc/3/en/content/drakfirewall.html for how to
> specify
> specific tcp and udp ports in the advanced part of the mcc firewall setup.

Does opening such above mentioned TCP/UDP port in Shorewall help you?

(In reply to Pe Alfa from comment #6)
> Thanks, but that's not enough for me.
> vlc could see once time. And it took a long time.
> All the others systems (android and debian) can see inmediatly the dlna
> server.

Because such systems do not have a activated by default firewall. Firewall is your trusty defence against malwares and hackers.

You can also disable it if your Home Network is behind a router with a firewall.
Therefore this is not recommended.

Status: NEW => NEEDINFO

Comment 8 Aurelien Oudelet 2021-04-06 20:17:48 CEST 
Reporter, could you please reply to the previous question?

For testing:
vlc + dlna server, ssdp lan discovery.

1) shorewall shutdown.

2) shorewall running + rules applied to open above ports.

3) vlc from flatpak is able to list DLNA shares ?


As I don't have DLNA shares, I can't test.

As we already have a request for enhancement https://bugs.mageia.org/show_bug.cgi?id=28014, I can close this if reporter is not able to answer 3 questions above. If you don't reply within two weeks from now, I will have to close this bug as OLD. Thank you.

Keywords: (none) => NEEDINFO

Comment 9 Pe Alfa 2021-04-16 10:54:56 CEST 
(In reply to Aurelien Oudelet from comment #8)
> Reporter, could you please reply to the previous question?
> 
> For testing:
> vlc + dlna server, ssdp lan discovery.
> 
> 1) shorewall shutdown.
> 
> 2) shorewall running + rules applied to open above ports.
> 
> 3) vlc from flatpak is able to list DLNA shares ?
> 
> 
> As I don't have DLNA shares, I can't test.
> 
> As we already have a request for enhancement
> https://bugs.mageia.org/show_bug.cgi?id=28014, I can close this if reporter
> is not able to answer 3 questions above. If you don't reply within two weeks
> from now, I will have to close this bug as OLD. Thank you.

Hi!
I did (1)+(2) and vlc works (sometimes it takes a long time to show sharing files).
I don't know what vlc-flatpak is. I don't need it.
Thanks
Comment 10 Lewis Smith 2021-04-18 09:12:50 CEST 
Thank you for the feedback. We can close this.

Resolution: (none) => WORKSFORME
Status: NEEDINFO => RESOLVED