From: John Frey (johnf@goldcircuit.com)
Date: Fri Jul 14 2000 - 13:59:55 PDT
The line that pmfirewall 1.1.4 inserts in the default install only effects
the "outer interface" if you have 2 NICs. If you have only 1 NIC, use a
line similar to the following in your "pmfirewall.rules.local" file:
$IPCHAINS -A input -p tcp -s <internal ip net #/mask> -d <Samba Host>
137:139 -j ACCEPT
$IPCHAINS -A input -p udp -s <internal ip net #/mask> -d <Samba Host>
137:139 -j ACCEPT
Make sure to insert it prior to any DENY directives for ports 137 & 139.
----- Original Message -----
From: "Andy" <kirby5482@hotmail.com>
To: <pmfirewall@pointman.org>
Sent: Friday, July 14, 2000 12:56 PM
Subject: [pmfirewall] Samba Questions
> I have a Samba server on my internet gateway, which has PMFirewall
installed
> on it. I saw that there was a option to disable the ports for
Samba/NetBIOS
> during the setup. I disabled them to be safe as the software advised me
to.
> I realized that those ports would now be shut off and my Samba server
> would not be seen anymore on my network.
>
> My question is: Can I disable those ports so any connections coming in
from
> the outside (Internet) can be refused/dumped and any connections coming
from
> my internal network be accepted? Can I use the PMFirewall software to do
> this?
>
> If I cannot use pmfirewall to do this, does anyone know of a place that
can
> explain how to do this?
>
> Thanks!
> Andy
> ________________________________________________________________________
> Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com
>
>
****************************************************************************
> * To UNSUBSCRIBE from the list, send a message with "unsubscribe
pmfirewall"
> * in the message body to majordomo@pointman.org. Please direct other
> * questions, comments, or problems to pmfirewall-owner@pointman.org.
> *
> * Need answers fast? Check the list archive located at:
> * http://www.pointman.org/PMFirewall/list-archive/
> *
****************************************************************************
* To UNSUBSCRIBE from the list, send a message with "unsubscribe pmfirewall"
* in the message body to majordomo@pointman.org. Please direct other
* questions, comments, or problems to pmfirewall-owner@pointman.org.
*
* Need answers fast? Check the list archive located at:
* http://www.pointman.org/PMFirewall/list-archive/
*
This archive was generated by hypermail 2b29 : Sun Jun 10 2001 - 02:35:22 PDT