p@dirac.org
2003-Oct-29 22:45 UTC
[Samba] linux and win2k: who is blocking whose messages?
hi all, i know a whole lot more about MS windows networking than i did this morning (but it still feels like i don't know much). the linux samba server is a local, master and preferred browse master. it's also a WINS server. linux's IP address is 192.168.0.2. the win2k machine is 192.168.0.4. the goal is to browse linux's filesystem from win2k's "computers near me". but when i double click "computers near me" i get the error "testgroup is not accessible. the network path was not found". after a bunch more of tinkering, i started to see these hopeful messages in /var/log/log.smbd: [2003/10/29 15:26:15, 0] lib/access.c:check_access(328) Denied connection from (192.168.0.4) [2003/10/29 15:26:15, 1] smbd/process.c:process_smb(883) Connection denied from 192.168.0.4 [2003/10/29 15:26:15, 0] lib/access.c:check_access(328) Denied connection from (192.168.0.4) [2003/10/29 15:26:15, 1] smbd/process.c:process_smb(883) Connection denied from 192.168.0.4 [2003/10/29 15:26:28, 0] lib/access.c:check_access(328) Denied connection from (192.168.0.4) hopeful because now i have something concrete to work with, whereas this morning it "simply didn't work". do these logs mean that linux is blocking win2k? or win2k is blocking linux? playing around with win2k, i found 2 things which are related to security: 1. local area connection properties | TCP/IP | Properties | Advanced | Options | IP Security 2. local area connection properties | TCP/IP | Properties | Advanced | Options | TCP/IP filtering unfortunately, by clicking on "properties" of both these items, it appears that neither one is being used. so win2k can't be blocking linux. on the other hand, i temporarily moved /etc/hosts.deny to a temp file and put "ALL: ALL" in /etc/hosts.allow. so linux can't be blocking win2k. so who is blocking whom? anyone have any ideas? pete [global] workgroup = TESTGROUP server string = %h server (Samba %v) passdb backend = tdbsam, guest passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n . syslog = 0 max log size = 1000 name resolve order = lmhosts host wins bcast socket options = IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=4096 SO_RCVBUF=4096 os level = 100 preferred master = Yes domain master = Yes dns proxy = No wins support = Yes panic action = /usr/share/samba/panic-action %d hosts allow = 192.169.0.4, 192.168.0.3, 192.168.0.2, 127. print command = /usr/bin/lpr -r -P%p %s lpq command = /usr/bin/lpq -P%p %s lprm command = /usr/bin/lprm -P%p %j queuepause command = /usr/sbin/lpc -P%p start [homes] comment = Home Directories read only = No create mask = 0700 directory mask = 0700 browseable = No [lp] path = /var/spool/lpd/samba read only = No create mask = 0700 printable = Yes [cdrom] comment = Samba server's CD-ROM path = /cdrom guest ok = Yes locking = No [tmp] comment = temporary files path = /tmp
Gerald (Jerry) Carter
2003-Oct-30 14:16 UTC
[Samba] linux and win2k: who is blocking whose messages?
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 p@dirac.org wrote: | [2003/10/29 15:26:15, 0] lib/access.c:check_access(328) | Denied connection from (192.168.0.4) ... | hosts allow = 192.169.0.4, 192.168.0.3, 192.168.0.2, 127. ~ ^^^ You have a typo here. cheers, jerry ~ ---------------------------------------------------------------------- ~ Hewlett-Packard ------------------------- http://www.hp.com ~ SAMBA Team ---------------------- http://www.samba.org ~ GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc ~ "You can never go home again, Oatman, but I guess you can shop there." ~ --John Cusack - "Grosse Point Blank" (1997) -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/oR1XIR7qMdg1EfYRAoUmAJwMeLk8BAcz2ZYEZ3hM2Dc6suceeQCfSU/2 l6BnumqH11bdmVEXjSlc4b8=XZ7g -----END PGP SIGNATURE-----