LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (http://www.linuxquestions.org/questions/linux-networking-3/)
-   -   cant conect to w2k shutting down ipchains works whats wrong with config file ? (http://www.linuxquestions.org/questions/linux-networking-3/cant-conect-to-w2k-shutting-down-ipchains-works-whats-wrong-with-config-file-495969/)

dewcansam 10-27-2006 01:37 AM

cant conect to w2k shutting down ipchains works whats wrong with config file ?
 
running rh7.2 and using ipchains i cant connect to my w2k shares i issue '/etc/rc.d/init.d/ipchains stop' and then my smbmnt command works. so i know that it is my ipchains. my problem is i haved used this layout b4 and never had any problems, so i studied the rules and everything should check out? anyways if somebody can give me a hint. pc is not really connected to inet so not too woried if ipchains is down but would really rather have it up.

Code:

# Firewall configuration written by lokkit
# Manual customization of this file is not recommended.
# Note: ifup-post will punch the current nameservers through the
#      firewall; such entries will *not* be listed here.
:input ACCEPT
:forward ACCEPT
:output ACCEPT
## ACCEPT policy
-A input -s 0/0 -d 0/0 -i lo -j ACCEPT
-A input -s 0/0 -d 0/0 21 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 23 -p tcp -y -j ACCEPT
-A input -s 192.168.1.1 53 -d 0/0 -p udp -j ACCEPT
-A input -s 208.225.80.2 53 -d 0/0 -p udp -j ACCEPT
-A input -s 208.225.80.4 53 -d 0/0 -p udp -j ACCEPT
-A input -s 0/0 -d 0/0 80 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 137 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 137 -p udp  -j ACCEPT
-A input -s 0/0 -d 0/0 138 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 138 -p udp  -j ACCEPT
-A input -s 0/0 -d 0/0 139 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 139 -p udp  -j ACCEPT
## REJECT policy
-A input -s 0/0 -d 0/0 -p tcp -y -j REJECT
-A input -s 0/0 -d 0/0 -p udp -j REJECT


musicman_ace 10-27-2006 05:15 AM

Should you have port 445 in your accept rules?

dewcansam 10-27-2006 05:59 AM

nope didnt work

--edit--
ok after doing some checking(a lightbulb turned on).
i have 6 computers in a small home network tied to the internet by a router going to a cable modem. i did a tcpdump on the rh7.2 and saw a number of requests going out to the router (i guess to get the netbios name?)
GOT IT
added port 32787 to ipchains and all is well
thanx


All times are GMT -5. The time now is 08:03 PM.