Wowza Streaming Engine protocols and port numbers – UFW Ubuntu Linux

Please share it on

UFW is the default firewall configuration in Ubuntu. It provides an easy method to create the firewall for both IPv4 and IPv6 traffic. Wowza Streaming Engine is one of the leading streaming software in the media industry. Using Wowza you can deliver streams through different protocols like RTMP, RTSP, HLS, MPEG-DASH, HDS, Smooth Streaming. Following are the port numbers assigned to the respective protocols

Just in case, if you are using iptables, then check here.

 

Ports and it’s application

 

HTTP/RTMP – TCP 80 (Good to use RTMP and HTTP in this port)

RTMPS, HTTPS – TCP 443

RTSP – TCP 554

HTTP/RTMP – TCP 1935

JMX Console and Monitoring – TCP 8084 (RMIConnectionPort), TCP 8085 (RMIRegistryPort)

HTTP administration – TCP 8086

RTP – UDP 6970 – 9999

HTTP Streaming Engine Web Dashboard – TCP 8088

HTTP RESTInterface – TCP 8087

Command line Interface – TCP 8083

 

UFW Firewall

 

Login as root user or user sudo permission

# ufw status verbose
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip

Create a file /etc/ufw/applications.d/wowza

#vim /etc/ufw/applications.d/wowza

Add the following content in it

[Wowza RTMP-HTTP]
title=Wowza Streaming (HTTP, RTMP)
description=Ingestion and Outgoing Stream
ports=80,1935/tcp

[Wowza Engine]
title=Wowza Streaming Engine (HTTP)
description=Wowza Streaming Engine Dashboard
ports=8088/tcp

[Wowza RTSP]
title=Wowza Streaming (RTSP)
description=Ingestion and Outgoing Stream
ports=554/tcp

[Wowza SSL]
title=Wowza Streaming with SSL (HTTPS, RTMPS)
description=Secure Ingestion and Outgoing Stream
ports=443/tcp

[Wowza JMX]
title=Wowza JMX Console
description=JMX Console and Monitoring
ports=8086/tcp

[Wowza RTP]
title=Wowza Streaming (RTP)
description=Multicast/Unicast RTP traffic
ports=6970:9999/udp

[Wowza REST-API]
title=Wowza API
description=Wowza REST API
ports=8087/tcp

[Wowza CMD]
title=Wowza Commandline Interface
description=Wowza Commandline Interface
ports=8083/tcp

[Wowza Admin]
title=Wowza HTTP administration
description=HTTP administration
ports=8086/tcp

[Wowza All]
title=Wowza Streaming Engine ports
description=All ports used by Wowza
ports=80,1935,554,8088,443,8086,8087,8083,8086/tcp|6970:9999/udp

[SSH]
title=Remote connection
description=SSH connection
ports=22/tcp

Now add update this profile to UFW

#ufw app update --add-new wowza

Now using UFW apps, enable the required ports

# ufw app list
Available applications:
  Apache
  Apache Full
  Apache Secure
  CUPS
  OpenSSH
  Postfix
  Postfix SMTPS
  Postfix Submission
  SSH
  Wowza Admin
  Wowza All
  Wowza CMD
  Wowza Engine
  Wowza JMX
  Wowza REST-API
  Wowza RTMP-HTTP
  Wowza RTP
  Wowza RTSP
  Wowza SSL

You can check the app list description like this

# ufw app info "Wowza All"
Profile: Wowza All
Title: Wowza Streaming Engine ports
Description: All ports used by Wowza

Ports:
  80,1935,554,8088,443,8086,8087,8083,8086/tcp
  6970:9999/udp

If you want to attach “Wowza All” profile to UFW

# ufw allow "Wowza All"
Rule added
Rule added (v6)
# ufw status numbered
Status: active

     To                         Action      From
     --                         ------      ----
[ 1] Wowza All                  ALLOW IN    Anywhere
[ 2] Wowza All (v6)             ALLOW IN    Anywhere (v6)

Don’t forget to add SSH if you are using remote machine

# ufw allow "SSH"
Rule added
Rule added (v6)

#ufw status numbered
Status: active

     To                         Action      From
     --                         ------      ----
[ 1] Wowza All                  ALLOW IN    Anywhere
[ 2] SSH                        ALLOW IN    Anywhere
[ 3] Wowza All (v6)             ALLOW IN    Anywhere (v6)
[ 4] SSH (v6)                   ALLOW IN    Anywhere (v6)

Please share it on

Leave a Reply

Your email address will not be published. Required fields are marked *