Skip site navigation (1)Skip section navigation (2)
Date:      Sat, 5 Nov 2005 21:23:26 -0500
From:      "Dave" <dmehler26@woh.rr.com>
To:        <freebsd-pf@freebsd.org>
Subject:   samba and smbfs
Message-ID:  <000301c5e279$122015e0$0900a8c0@satellite>

next in thread | raw e-mail | index | archive | help
Hello,
    I've got a pf firewall on a box that blocks by default. I want samba to 
listen on the internal interface only, this happens, yet machines still 
can't get to the samba box. The relevant rules are below. I'm also trying to 
mount some xp shares via smbfs this too is not working probably for the same 
reason. Can someone tell me where my rules went wrong?
Thanks.
Dave.

# allow internal samba
pass in quick on $int_if inet proto tcp from $int_if:network to ($int_if) 
port 137 flags S/SA modulate state
pass in quick on $int_if inet proto tcp from $int_if:network to ($int_if) 
port 138 flags S/SA modulate state
pass in quick on $int_if inet proto tcp from $int_if:network to ($int_if) 
port 139 flags S/SA modulate state
pass in quick on $int_if inet proto tcp from $int_if:network to ($int_if) 
port 445 flags S/SA modulate state
pass in quick on $int_if inet proto udp from $int_if:network to ($int_if) 
port 137 keep state
pass in quick on $int_if inet proto udp from $int_if:network to ($int_if) 
port 138 keep state
pass in quick on $int_if inet proto udp from any to ($int_if) port 139 keep 
state
pass in quick on $int_if inet proto udp from any to ($int_if) port 445 keep 
state
pass quick on $int_if from ($int_if) to $int_if:broadcast keep state




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000301c5e279$122015e0$0900a8c0>