Re: netbios & diald problems

Wed, 13 Jan 1999 16:16:58 -0500 

On Tue, 12 Jan 1999, Cary O'Brien wrote:

> > 
> > Jephe Wu writes:
> > > 
> > > try the following command.
> > > 
> > > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ns -P tcp
> > > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ns -P udp
> > > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-dgm -P tcp
> > > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-dgm -P udp
> > > /sbin/ipfwadm -F -a deny -S 0.0.0.0 netbios-ssn -P tcp
> > > 
> > > if okay, then add them to /etc/rc.d/rc.local
> > 
> > Nope- didn't work.  Good to have, though.  Isn't this acting on the packets
> > on the PPP link, not the ethernet, and therefore not affected by diald?
> > 
> > I'm going to have to wade through the logfiles again and make double sure
> > of what I'm seeing.
> > 
> 
> We had that problem.  It is not the netbios packets themselves (which
> the ipfwadm rules above would stop), but the brain-damaged DNS lookups
> that WIN95 boxes make for no apparent reason.  They try to do a DNS lookup
> on their workgroup at regular (12 minute?) intervals.  God only knows
> why.
> 
> You can see this with tcpdump (as root)
> 
>       /usr/sbin/tcpdump -s 512 port domain
> 
> Should show you all the dns lookups happening on your lan.
> 
> We stopped this by changing (from memory) one of the settings in the
> network configuration for file sharing for msoft windows.  Something
> like
> 
>       control panel -> networks
>               pick file sharing for microsoft windows, properties
>                       turn off lm announce or something like that
> 
> Sorry I can't be more specific.  Home is a (nearly *) Microsoft free
> environment.
> 
> Anyone else remember exactly how to do this?

I found a way to cure it with linux:
Run samba.  Even if its not set up to do anything, as long as its running,
it will answer the netbios requests so win9* never resorts to DNS lookups.

I also looked into the cure from the win98 side.  It requires a registry
hack ON EACH SYSTEM ON THE NETWORK.  It wouldn't have been a big deal with
me since I only had 2 systems, but I wanted to be able to have my friends
bring over computers and not have to worry about hacking their registry or
having diald dial out continously.

-----
Jim Kusznir ([EMAIL PROTECTED])
RidgeNET Tech Support
371-3501
[EMAIL PROTECTED]


-
To unsubscribe from this list: send the line "unsubscribe linux-diald" in
the body of a message to [EMAIL PROTECTED]

Reply via email to