[Shorewall-users] Question on samba/nmbd

John Leach shorewall@osware.net
Mon, 15 Apr 2002 21:14:30 +1000


Maybe add a line
fw     loc             ACCEPT            info
In terms of diagnosis I find the 'info' very helpful to log packets
to /var/log/messages.
I hope this helps,
John Leach



On Mon, 15 Apr 2002 11:57, Brian Fallik wrote:
> Is shorewall configured by default to drop/reject udp broadcasts?
>
> I'm trying to setup samba and my windows machines can't see the samba
> server (which is also the firewall).  I see the following errors in
> log.nmbd:
>
> [2002/04/14 20:55:32, 0] libsmb/nmblib.c:send_udp(777)
>   Packet send failed to 192.168.2.255(137) ERRNO=Operation not permitted
> [2002/04/14 20:55:32, 0] nmbd/nmbd_packets.c:send_netbios_packet(174)
>   send_netbios_packet: send_packet() to IP 192.168.2.255 port 137 failed
> [2002/04/14 20:55:32, 0] nmbd/nmbd_namequery.c:query_name(257)
>   query_name: Failed to send packet trying to query name OCTO<1d>
>
> My policies are setup as:
> #SOURCE         DESTINATION     POLICY          LOG LEVEL
> loc             fw              DROP            info
> loc             net             ACCEPT
> fw              net             ACCEPT
> net             all             DROP            info
> all             all             REJECT          info
>
> Any help debugging would be appreciated.  I'm pretty much out of ideas on
> how to take this further.  I've scoured usenet and google and haven't found
> anything helpful.
>
> Thanks,
> brian
>
> _______________________________________________
> Shorewall-users mailing list
> Shorewall-users@shorewall.net
> http://www.shorewall.net/mailman/listinfo/shorewall-users

-- 
http://osware.net


Scanned for viruses at osware.net