Hello !
I’ve been using syncthing for quite some time, although I wanted to kind of just ask before I do anything too crazy.
First off:
Syncthing runs on TrueNas Scale in docker.
Ports it’s running on are: 20910 and 22000.
Long story short, I am able to sync on all of my devices, with reletively few issues, however, when I check my firewall logs in pfsense, I always have a plethora of syncthing traffic being blocked, and most of the blocks look something like this:
| 2024-11-23 20:48:40.717936-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.49.64:22000 | UDP | |
|---|---|---|---|---|---|
| 2024-11-23 20:48:40.717917-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.49.64:22000 | UDP | |
| 2024-11-23 20:48:40.717883-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.232.152:22000 | UDP | |
| 2024-11-23 20:48:40.717831-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.232.152:22000 | UDP | |
| 2024-11-23 20:48:39.712257-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.49.64:22000 | UDP | |
| 2024-11-23 20:48:39.712239-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.49.64:22000 | UDP | |
| 2024-11-23 20:48:39.712222-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.232.152:22000 | UDP | |
| 2024-11-23 20:48:39.712205-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.232.152:22000 | UDP | |
| 2024-11-23 20:48:39.712188-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.49.64:22000 | UDP | |
| 2024-11-23 20:48:39.712171-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.49.64:22000 | UDP | |
| 2024-11-23 20:48:39.712138-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.232.152:22000 | UDP | |
| 2024-11-23 20:48:39.712087-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.232.152:22000 | UDP | |
| 2024-11-23 20:48:38.706056-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.49.64:22000 | UDP | |
| 2024-11-23 20:48:38.705951-05:00 | VLAN20SERVER | 192.168.10.220:22000 | 169.254.232.152:22000 |
The source address is my syncthing server, and the destination addresses all appear to be APIPA addresses, I’m not exactly sure what/why/who the server is trying to reach with this traffic, although I’m wondering if I should be passing it or just leaving it blocked? It tends to really gum up my firewall logs.
Has anyone experienced this, and would it be safe for me to let this traffic pass?
thanks.