How do I whitelist a dynamically changing application sync server IP ? - eviltoast

Does anybody know how I can whitelist obsidian synch server ips every time they change?

cross-posted from: https://programming.dev/post/2768533

I have a vm for which I have s specific whitelist only firewall. It is supposed to only allow connections to the IPs an app connects to when syncing.

I first got the sync server IP’s listening to tcpdump, then when I had the IP’s I activated the whitelist.

This worked perfectly for some time, but now it appears that the IP’s have changed. I could do the same thing again but repeating the process regularly is annoying and defeats the whole purpose of only ever allowing network connections to specific whitelisted serves.

Alternatively, I could set up a process to only allow network traffic from that app somewhat.

Using debian-11 btw.

Any help is appreceated !!!

  • biscotty666@lemmy.world
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    You could use Syncthing. If your NAT router supports UPnP, which most do, you don’t need to worry about the firewall. If for some reason it doesn’t just work you can forward 22000 tcp/udp. It’s device to device and doesn’t depend on IP addresses.