--On Monday, December 02, 2002 01:30:55 PM -0500 Brad Fritz <[EMAIL PROTECTED]> wrote:
Good point Brad. Yes -- Youngdo, you should follow Brad's suggestion while you are trying to debug this problem.On Tue, 03 Dec 2002 02:56:52 +0900 youngdo wrote: > The above rule allows UDP port 137 packets from your firewall to the> local network. Is your local network 192.168.1.0/24? Are you seeing > any Shorewall log messages about 192.168.1.255:137 ("shorewall show > log")? >There are not that kind of contents.While debugging this, it might be helpful to copy /etc/shorewall/common.def to /etc/shorewall/common and comment out the lines: run_iptables -A common -p udp --dport 137:139 -j REJECT run_iptables -A common -p udp --dport 445 -j REJECT run_iptables -A common -p tcp --dport 135 -j reject Please correct me if I'm wrong, Tom, but I believe those lines will prevent logging of NetBIOS traffic to the firewall.
Also, Youngdo - you didn't answer the question "Is your local network 192.168.1.0/24"?
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://shorewall.sf.net
ICQ: #60745924 \ [EMAIL PROTECTED]
-------------------------------------------------------
This SF.net email is sponsored by: Get the new Palm Tungsten T handheld. Power & Color in a compact size! http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
