On 2022/03/01 11:24, Landry Breuil wrote: > Hi, > > while looking at other things i noticed OpenVPN wasnt in /etc/services. > > apparently its listed/registered by IANA since 2004 (i know, not a reason), > and > i have it on a debian 11 box and on a FreeBSD 12.2 server. > > i see two reasons: > - making sure another service doesnt squat the port for outgoing cnx, since > in some configs openvpn is started manually after boot > - write nicer pf rules :) > > oks ?
This is way more common than some entries already in the file and with the UDP variant we don't want e.g. ntpd randomly picking it as a port to use. (The protocol can use TCP or UDP so it's correct to list both). And since the file is installed directly to /etc/service rather than going via etc.tgz it's not really a "user modifiable" file where it can be added locally. Probably best to wait a bit for other feedback, but: OK sthen > Index: services > =================================================================== > RCS file: /cvs/src/etc/services,v > retrieving revision 1.103 > diff -u -r1.103 services > --- services 2 Sep 2021 10:46:22 -0000 1.103 > +++ services 1 Mar 2022 10:18:08 -0000 > @@ -173,6 +173,8 @@ > pop3s 995/tcp spop3 # pop3 protocol over > TLS/SSL > socks 1080/tcp # Socks > kpop 1109/tcp # Pop with Kerberos > +openvpn 1194/tcp # OpenVPN > +openvpn 1194/udp # OpenVPN > ms-sql-s 1433/tcp Microsoft-SQL-Server > ms-sql-s 1433/udp Microsoft-SQL-Server > ms-sql-m 1434/tcp Microsoft-SQL-Monitor >
