Hi, you should be firewalling ports 135-139 inclusive (not 137-139)
kind regards Norman On Tue, 16 Dec 2003, Grant Parnell wrote: > Just backing up what David said... > for example in/etc/samba/smb.conf > interfaces = 127.0.0.0/255.0.0.0 192.168.0.0/255.255.255.0 > > Also, block ports 137,138,139,445 udp & tcp with the firewall. EG > iptables -A INPUT -i ppp0 -p udp --dport 137:139 -j DROP > iptables -A INPUT -i ppp0 -p udp --dport 445 -j DROP > iptables -A INPUT -i ppp0 -p tcp --dport 137:139 -j DROP > iptables -A INPUT -i ppp0 -p tcp --dport 445 -j DROP > assuming your public interface is ppp0 > You could also -j LOG but as you've already discovered there's thousands -- Epsilon-6! Ph:+612 8807-4780 Fax: +612 8807-4498 E-Solutions for BSD and Linux http://www.paladincorp.com.au/ -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
