Hello Jeroen,
Friday, February 08, 2002, 6:50:29 PM, you wrote:
JvdW> Hi,
JvdW> I'm new at Linux and I've got a problem with Samba and the settings of my
JvdW> iptables.
JvdW> I'm using Bastille scripts to configure my iptables.
JvdW> This is the problem: when the iptables are 'up', I can't connect to Samba
JvdW> from a Windows machine in the local network. The Windows machine simply
below is a copy of my bastille.cfg, have a read and see if it helps
#
# /etc/bastille-firewall.cfg
#
# Configuration file for both 2.2/ipchains and 2.4/netfilter scripts
#
# version 0.99-beta1
# Copyright (C) 1999-2001 Peter Watkins
#
DNS_SERVERS="198.142.0.51 203.2.75.132 "
TRUSTED_IFACES="lo eth1"
PUBLIC_IFACES="eth+ ppp+ slip+"
INTERNAL_IFACES="eth1"
TCP_AUDIT_SERVICES="telnet ftp imap pop3 finger sunrpc exec login ssh"
UDP_AUDIT_SERVICES="31337"
ICMP_AUDIT_TYPES=""
TCP_PUBLIC_SERVICES=""
UDP_PUBLIC_SERVICES=""
TCP_INTERNAL_SERVICES=""
UDP_INTERNAL_SERVICES=""
FORCE_PASV_FTP="N"
TCP_BLOCKED_SERVICES="2049 2065:2090 6000:6020 7100"
UDP_BLOCKED_SERVICES="2049 6770"
ICMP_ALLOWED_TYPES="destination-unreachable echo-reply time-exceeded"
ENABLE_SRC_ADDR_VERIFY="Y"
# IP Masquerading / NAT. List your internal/masq'ed networks here
IP_MASQ_NETWORK="192.168.0.0/255.255.0.0"
IP_MASQ_MODULES="ftp"
REJECT_METHOD="DENY"
DHCP_IFACES="eth0"
NTP_SERVERS=""
ICMP_OUTBOUND_DISABLED_TYPES="destination-unreachable time-exceeded"
LOG_FAILURES="N" # do not log blocked packets
IPTABLES_LOG_LEVEL="1" # define the log level for audited
# safest
ALLOW_FRAGMENTS="Y" # old behavior
DROP_SMB_NAT_BCAST="Y" # drop those packets
--
Best regards,
Colin mailto:[EMAIL PROTECTED]
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
