Buchan Milne <[EMAIL PROTECTED]> writes:
>
> 3)Allowing smb traffic over the firewall
> We are actually migrating over the firewall at the moment, but I have had
> trouble allowing smb traffic to cross the firewall. To ensure things work
> for the moment (well, kind of) I have put a 2nd interface on our samba
> Primary Domain Controller, and routed some printing through it with CUPS
> and samba. However, in the future we might want to be able to allow
> traffic from selected hosts to access smb service on our network. I have
> added rules allowing ports 137-139 both TCP and UDP, but this does not
> seem to work. It would appear that this is prohibited in
> /etc/rc.d/init.d/bastille-firewall (~ line 306):
>
> ${IPCHAINS} -A forward -p tcp -s 0.0.0.0/0 137:139 -d 0.0.0.0/0 -j
> ${REJECT_METHOD} ${LOG_FLAG}
> ${IPCHAINS} -A forward -p udp -s 0.0.0.0/0 137:139 -d 0.0.0.0/0 -j
> ${REJECT_METHOD} ${LOG_FLAG}
>
> It seems that this might also mess with WINS (I tried to use the external
> WINS server, but no addresses got updated ....)
Hi again,
Go to http://www.mail-archive.com/[email protected]/ and
search for samba. I have provided some examples a fex time ago ...
sincerely,
--
Florin http://www.mandrakesoft.com
