I am trying to expose an Apple HomeKit Bridge integration, the configuration suggests that
The firewall should be opened on the port the bridge is listening on.
But there is no mention of security implication of this, I run home assistant on an IPv6 address, accessible to the public internet.
Is it ok to expose this port to the internet, as in is there a homekit specific authentication, authorization that happens when I pair with the bridge or the port is open for anyone to pair?
Firewall
If you have a firewall configured on your Home Assistant system, make sure you open the following ports:
- UDP: 5353
- TCP: 21063 (or the configured/used
portin the integration settings).
I think the intention is to tell you to expose it on LAN not WAN.
Thanks for the reply.
Yes I understand that it probably means expose it locally, but is it ok to expose it outside?
The question mostly come from unfamiliarity with Apple homekit, whats the authentication/authorization happening here?