Kaleb Pederson wrote: > > Yes, that's definitely coming from a different subnet. > > iptables handles it just fine if configured well. I use something like: > > -A INPUT # if coming from local subnet # -j localnet > -A INPUT # if coming from external source # -j badnet > > -A badnet -p tcp -m tcp --dport 22 -j ACCEPT > -A badnet -j DROP > > -A localnet -p tcp -m tcp --dport 22 -j ACCEPT > -A localnet -p tcp -m tcp --dport 80 -j ACCEPT > -A localnet -j samba > -A localnet -j DROP > > -A samba -p tcp -m tcp --dport 139 -j ACCEPT > -A samba -p udp -m udp --dport 137 -j ACCEPT > -A samba -p udp -m udp --dport 138 -j ACCEPT > -A samba -p tcp -m tcp --dport 901 -j ACCEPT # for swat
And tcp 445, the new port that Win2k (and hence Samba 3.0) now uses. (Netbiosless SMB/CIFS) Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
