LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   Mandrake 10, XP, Samba and networking hell! (https://www.linuxquestions.org/questions/linux-networking-3/mandrake-10-xp-samba-and-networking-hell-235584/)

jobiwan 09-26-2004 10:05 PM

Mandrake 10, XP, Samba and networking hell!
 
Hi

I've been trying off and on (...mostly off lately ;-P) to set up a development server with Mandrake 10.

I have the server operational (a PIII-733 box) and can get to the "Advanced Extranet Server" page on my XP-Pro box. I can even get to Webmin (after I added port 10000/tcp to the allowed list in Shorewall).

But there seems to be no way I can get Samba to work or even for the server to show up in the workgroup on my XP-Pro machine.

The server is my internet connection sharing box IP=192.168.1.1 (mandrake)
The XP-Pro box is my workstation IP=192.168.1.2 (Win-XP)
I have another box for the kids IP=192.168.1.3 (Sanda)

All are on Workgroup= MDKGROUP

ETH1 on Mandrake connects to the internet on a static IP (cable)
ETH0 on mandrake connects to a hub for the MDKGROUP network.

Both Windoze machine have internet access (Win-XP & Sanda)

Is this a problem with the firewall setup?
Is just adding port 10000/tcp to the allowed list in Shorewall safe?

This was easy to do in Mandrake 9...but then there was no firewall...why is this (seemingly) so hard in Mandrake10?

Tap-Out 09-27-2004 12:28 AM

I, personally, found 99% of my Samba problems can be solved by installing the SWAT utility.

Insert the Third (I believe) MDK cd and mount it.

then go into the RPMS directory, and type
Code:

ls | grep swat
to make sure the swat util is on that cd.

Once you found the Swat utility

Code:

su
enter the root password
rpm -ivh swat-verision.rpm

Once that has installed make sure you open port 901 on your MDK computer.

Then open up a web browser and go to http://192.168.1.1:901 or http://127.0.01:901 and once again put in the root name/password. From there I found this utility to be of massive usefullness.

Cheers

Tap

DaneM 09-27-2004 02:34 AM

Sounds familiar....
 
Hi, Jobiwan.

This is probably a firewall thing. I've had almost the exact same setup working (mostly) before, but it wouldn't work reliably at all until I removed the firewall that came with Mandrake 10 and made my own set of policies. There are several ports that SMB uses (I don't remember off the top of my head which they are), and for some reason using Mandrake's GUI configuration tool for the firewall to open them up doesn't work as advertised. You'll probably want to make your own firewall script or get down and dirty with shorewall. That will most likely solve your samba problems.

Good luck!

--Dane

jobiwan 09-27-2004 02:50 AM

Thanks!
 
Help really does come quickly here!:)

Tap-Out:
Got SWAT installed already...pretty sure it's set up correctly as I'm using all the same setup that worked for me with Mandrake 9.1. The error I get is "connection refused..." which is what makes me think it's the firewall.

I've even tried this after turning off (? - selecting " no firewall" under Sercuity > Firewall in the Mandrake Control Center)....same result....can get AVDX page and can get Webmin, but no Samba Shares or Mandrake visible in Workgroup Computers.

DaneM:
Would be interested in your set of policies...looks like you understand exactly where I'm coming from.

Many thanks for the replies! :D

DaneM 09-27-2004 03:14 AM

*bow* thanks :-)

Unfortunately I scrapped that installation due to some unrelated URPMI problems a while ago. :-( I'll see about setting up SAMBA on my new installation (been meaning to for a while) and let you know how it goes. The jest of it, though, is that you need to let all traffic coming or going out on your local network through, most particularly on the ports SMB uses (haven't gotten around to looking them up yet). After that you need to make sure that the permissions for the files in your shared directories are set so that everybody can read (and perhaps write) to them. Also, make sure that all your directories have the executable permission set on them for all users. Between these changes your setup should work pretty much like it's supposed to. Then your real work will be in fine-tuning your smb.conf file.

I'll get back to you about my samba configuration (although it wouldn't hurt to remind me every few days since I tend to forget these things).

Cheers!


--Dane

jobiwan 09-29-2004 09:20 PM

http://www.linuxquestions.org/questi...uccess+atlarst

Found this thread which is exactly what I was after...but ...

After spending most of the day attempting to replicate this without clearing and reinstalling Shorewall (I want this to be an easilly replicated setup from the Mandrake discs) I still have the same problem?!

This is what I got to using Webmin:

network zones:
Zone ID Displayed name Description
net Net Internet zone
loc Local Local

network interfaces:
Interface Zone name Broadcast address Options
eth1 net Automatic None
eth0 loc Automatic None

policies:
Source zone Destination zone Policy Syslog level Traffic limit
loc net ACCEPT None None
loc Firewall ACCEPT None None
Firewall net ACCEPT None None
net Any DROP info None
Any Any REJECT info None

firewall rules:
Action Source Destination Protocol Source ports Destination ports
ACCEPT Firewall Zone Local UDP Any 137,139
ACCEPT Firewall Zone Local TCP Any 137,139,445
ACCEPT Zone Local Firewall UDP Any 137,138,139
ACCEPT Zone Local Firewall TCP Any 137,138,139,445,10000
REDIRECT Zone Local Port 3128 TCP Any www
ACCEPT Firewall Zone Net TCP Any www


Does this look like it should work?

Does etc/shorewall/zones + interfaces + policy + rules replace etc/sysconfig/iptables?

Do i need to delete etc/sysconfig/iptables?

JB.

jobiwan 10-15-2004 11:56 PM

Shorewall + Samba (on MDK 10)
 
Still looking for help on this.....anyone?

jobiwan 10-15-2004 11:57 PM

get "connection refused" on http://localhost:901/

Tap-Out 10-17-2004 05:41 PM

If your firewall is turned off it should not be a port problem.

Check to make sure you have the swat service running

Code:


su
root password
/sbin/chkconfig swat on
/etc/init.d/xinetd restart

try http://localhost:901 then.

If it still doesn't work try using

http://your-actual-ip-address-here:901 (ex: http://192.168.0.242:901)

Hope that will help some.

Cheers

Tap

jobiwan 10-18-2004 02:26 PM

IT WORKS!
 
UNBELIEVABLE!

After all this we had a power cut yesterday forcing a reboot of the computer

...and....

whaddaya know...IT WORKS!

Obviously everything was actually set up correctly but even though I had done restarts on all the services it had not taken effect until the machine was rebooted...sounds almost a bit Windoze like ;)

So....if you are having problems with Mandrake ICS, Samba and Windoze XP see my post of Shorewall settings above altered in Webmin and it may help.

:)

Many thanks to those who helped and for all the other postings I trawled looking for the info that helped me fix the problem....awesome forum guys!

:D


All times are GMT -5. The time now is 09:34 AM.