=?gb2312?B?u9i4tDogbmV0YmlvcyAmIGRpYWxkIHByb2JsZW1z?=

Tue, 12 Jan 1999 21:30:39 -0500 

try the following command.

/sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ns -P tcp
/sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ns -P udp
/sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-dgm -P tcp
/sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-dgm -P udp
/sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ssn -P tcp

if okay, then add them to /etc/rc.d/rc.local



-----Original Message-----
������: Matthew J. Bennett <[EMAIL PROTECTED]>
�ռ���: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
����: 1999��1��13�� 9:35
����: netbios & diald problems


I have diald running quite well, but I'm having problems figuring out
the filtering rules.

It runs great on my linux network, I have a linux machine set up as my
local gateway, which dials into my ISP, hiding my network behind
IP masquerading and a firewall.  The problems started when I tried to
configure my windows machine to access a disk on another linux box
using samba.  Whenever I click on "network neighborhood" the windows
machine issues calls to the nameserver at the ISP (my regular nameserver),
which diald intercepts and dials up the link for me.

I've tried to filter out this behavior, and it seems to be possible, because
a tcpdump shows that the origin of the nameserver request is the netbios-ns
port, but the "ignore udp.source=udp.netbios-ns" filter is never
run into, what triggers the link is the line "accept udp 30
udp.dest=udp.domain"
(which happens to be after the ignore, but I've tried it before also).

Is it possible to filter out these requests without filtering out DNS
requests entirely?

Has anyone developed a workaround for this situation? (maybe a caching
nameserver on my gateway?  But I haven't figured that one out yet. Or is
it possible to implement a hosts file on a win95 box?)



-----------------------------
Matt Bennett                |
[EMAIL PROTECTED]              |
http://www.hazmat.com/~mjb/ |

-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]


-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]

Reply via email to