thr3ads.net - Shorewall users - [Shorewall-users] SAMBA problem [Apr 2002]

If this information is useful, please help other people find it:
Share via:

David Grant

2002-Apr-25 04:45 UTC

[Shorewall-users] SAMBA problem

I have the following rules defined.  I am allowing SAMBA traffic from 
the net to fw as opposed to my local network, because my local network 
is actually on the internet.  I have a hub and two dynamic DHCP 
addresses for 2 computers, that''s why.  Anyways, that''s not a
big deal,
it''s just so you understand why I''m allowing internet netbios
traffic.

So I have these four rules defined:

ACCEPT          fw      net             udp     137:139 #SAMBA
ACCEPT          fw      net             tcp     137,139
ACCEPT          net     fw              udp     137:139
ACCEPT          net     fw              tcp     137,139

But UDP packets from port 137 from another computer is being blocked by 
shorewall from reaching my computer.  This doesn''t really make sense to
me.  Does anyone have any advice that could help me out? Please CC 
e-mails to me.   Thanks,

David Grant
david.grant@telus.net

Tom Eastep

2002-Apr-25 13:13 UTC

head link

[Shorewall-users] SAMBA problem

On Wed, 24 Apr 2002, David Grant wrote:
> I have the following rules defined.  I am allowing SAMBA traffic from 
> the net to fw as opposed to my local network, because my local network 
> is actually on the internet.  I have a hub and two dynamic DHCP 
> addresses for 2 computers, that''s why.  
Huh? Since Shorewall attaches absolutely no meaning to the names
''net'' and
''loc'', why wouldn''t you set it up with the usual
naming convention?
 > Anyways, that''s not a big deal, 
> it''s just so you understand why I''m allowing internet
netbios traffic.
> 
> So I have these four rules defined:
> 
> ACCEPT          fw      net             udp     137:139 #SAMBA
> ACCEPT          fw      net             tcp     137,139
> ACCEPT          net     fw              udp     137:139
> ACCEPT          net     fw              tcp     137,139
> 
No clue -- since you believe that Shorewall is blocking something, you
obviously have log messages that you can show us so that we might see
which chain is doing the blocking.

-Tom
-- 
Tom Eastep    \ Shorewall - iptables made easy
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net

Shorewall users - Apr 2002 - SAMBA problem

[Shorewall-users] SAMBA problem

[Shorewall-users] SAMBA problem