From owner-freebsd-questions Thu Aug 26 16:23:18 1999 Delivered-To: freebsd-questions@freebsd.org Received: from mailout1.nyroc.rr.com (mailout1-1.nyroc.rr.com [24.92.226.146]) by hub.freebsd.org (Postfix) with ESMTP id D399F15399 for ; Thu, 26 Aug 1999 16:23:13 -0700 (PDT) (envelope-from leisner@rochester.rr.com) Received: from mail2.rochester.rr.com ([24.92.226.75]) by mailout1.nyroc.rr.com (Post.Office MTA v3.5.3 release 223 ID# 0-59787U250000L250000S0V35) with ESMTP id com; Thu, 26 Aug 1999 19:23:05 -0400 Received: from rochester.rr.com ([24.93.25.209]) by mail2.rochester.rr.com (Post.Office MTA v3.5.2 release 221 ID# 0-53939U80000L80000S0V35) with ESMTP id com; Thu, 26 Aug 1999 19:23:05 -0400 Received: from soyata.home (IDENT:leisner@localhost [127.0.0.1]) by rochester.rr.com (8.9.3/8.8.5) with ESMTP id TAA02775; Thu, 26 Aug 1999 19:23:11 -0400 Message-Id: <199908262323.TAA02775@rochester.rr.com> X-Mailer: exmh version 2.0.2 Reply-To: leisner@rochester.rr.com To: "David B. Aas" Cc: questions@FreeBSD.ORG Subject: Re: What uses Port 137-NETBIOS Name Service? In-reply-to: Your message of "Thu, 26 Aug 1999 09:10:21 CDT." <004301beefcc$bdfb9160$0fc8a8c0@dave.ciminot.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Thu, 26 Aug 1999 19:23:11 -0400 From: "Marty Leisner" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG 137 is the netbios name service socket. 137 shouldn't be sent through a firewall anyway (it should only be local on a lan) [well, not really, but this is a reasonable scenario). > I am getting the following denial in my IPFW log: > > Aug 26 08:53:51 gateway /kernel: ipfw: 3200 Deny UDP 207.195.152.19:137 > 208.149.231.82:137 in via xl1 > > xl1 is my outside net > 208.149.231.82 is my address of xl1 > Rule 3200 is "deny log udp from any to any" which is my final rule. > > I have a Windows NT Server inside my network, running NETbeui protocols. I > appear to be getting these requests from outside. > > What uses port 137? Nobody on the network seems to be complaining that they > can't do stuff, so I am inclined to let it go, and keep denying the packets. > Is there a reason I should be letting these packets through? > > Does anybody hava any thoughts on this? > > Thanks > > Dave Aas > dave@ciminot.com > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message Marty Leisner To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message