iptables and samba

Ammad · 07-19-2006, 08:31 AM

Problem starts when i use default policy to block like below.

#iptables -P INPUT DROP
#iptables -A INPUT -i lo -j ACCEPT
#iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
#iptables -A INPUT -p tcp --dport 137:139 -j ACCEPT
#iptables -A INPUT -p udp --dport 137:139 -j ACCEPT
#iptables -A INPUT -p tcp --dport 445 -j ACCEPT
#iptables -A INPUT -p udp --dport 445 -j ACCEPT

#iptables -P OUTPUT ACCEPT

but when i browse it from windows using \\a.b.c.d\share

unable to browse it, as i change default policy of input to accept, it works,
what can be problem.

prozac · 07-20-2006, 01:08 AM

maybe you should use the --source/-s or --destination/-d options too.

Ammad · 07-20-2006, 05:26 AM

this isn't required,

, its optional

win32sux · 07-25-2006, 01:48 AM

Quote:

Originally Posted by Ammad

as i change default policy of input to accept, it works,
what can be problem.

if that's the case, then all you need to do is add a LOG rule to the end of the chain and then monitor the logfile when you try to connect and it doesn't work...

Code:

iptables -A INPUT -j LOG --log-prefix "INPUT DROP: "