On Sat, 29 Nov 2003, S. Keel wrote: > > After my original post, I worked through the shorewall configs some more, > and came up with this... > > Adding loc -> loc ACCEPT in /etc/shorewall/policy > > ...although I'm not sure if that's what you're referring to Tom. >
Yes. > Pings went through to specific IPs on the other subnet after that. > > Also, speaking to Ray's question regarding which hosts I was trying to > ping...Prior to setting up the second interface and second workgroup, I > was able to ping from one Windows host to another by just using their > netbios name. All of these hosts were getting their IPs from dhcpd. It > wasn't until after adding the second interface and assigning some of the > hosts to the second workgroup that I wasn't able to ping between the two > either by way of their netbios names, or with a specific IP. > > I attempted to add the rules described here: > > http://www.shorewall.net/samba.htm > > But that didn't make any difference. > Adding ACCEPT rules on top of an ACCEPT policy NEVER makes any difference. > So, the only thing that doesn't work still is netbios names from one > subnet to the other. Also, when browsing the "Entire Network" in Windows, > I can only see the workgroup that a particular host belongs to, not the > other workgroup on the network. I'm not running any WINS or DNS servers, > although I do have a SAMBA server that is set to be the domain master > browser, but that's only on one of the workgroups. So now set up a Samba Box as a WINS server and configure all of your windoze boxes to use it. When a router *of any kind* is present in a windoze network, you must have a WINS server and/or a PDC. From here on out, you have a windoze network configuration problem -- not a firewall problem. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] ------------------------------------------------------- This SF.net email is sponsored by: SF.net Giveback Program. Does SourceForge.net help you be more productive? Does it help you create better code? SHARE THE LOVE, and help us help YOU! Click Here: http://sourceforge.net/donate/ ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
