From owner-freebsd-questions Thu Jul 6 6:31:17 2000 Delivered-To: freebsd-questions@freebsd.org Received: from mostgraveconcern.com (mostgraveconcern.com [216.82.145.240]) by hub.freebsd.org (Postfix) with ESMTP id A851D37B9EE for ; Thu, 6 Jul 2000 06:31:14 -0700 (PDT) (envelope-from dan@mostgraveconcern.com) Received: from danco (danco.mostgraveconcern.com [10.0.0.2]) by mostgraveconcern.com (8.9.3/8.9.3) with SMTP id GAA72217; Thu, 6 Jul 2000 06:28:51 -0700 (PDT) (envelope-from dan@mostgraveconcern.com) Message-ID: <008a01bfe74e$1fbfebc0$0200000a@danco> Reply-To: "Dan O'Connor" From: "Dan O'Connor" To: "O. Hartmann" , Subject: Re: IPFirewall and Samba Date: Thu, 6 Jul 2000 06:28:51 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 4.72.3155.0 X-MimeOLE: Produced By Microsoft MimeOLE V4.72.3155.0 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG >Dear Sirs. >Does anyone run IPFIREWALL and Samba on a FBSD 4.0 box? >If yes, please tell me how you got rid of the hostname lookup problem >under NT/Win98. When enabling our firewall (with a primitive, non tricky >ruleset), hosts which have not accessed the Samba server before starting >the ip chain are not able to connect to shares. Some problems are >mentioned in the Samba documentation, but no solution. maybe someone has >a tricky way to go around ... I have IPFIREWALL and Samba running on the same machines both here and at work. I don't remember doing anything special other than making sure the FreeBSD machine and all the Windows machines had complete and accurate hosts files (/etc/host on FreeBSD, c:\windows\hosts on the Windows machines). That stopped DNS lookups and what not even before we used IPFW (when using ppp(8) and dial-up access, before we switched to DSL). If you don't have too many machines, you could try that (and if it doesn't work, holler again!). Otherwise, you might need to set up a DNS server for your internal network. --Dan -- Dan O'Connor On Matters of Most Grave Concern http://www.mostgraveconcern.com To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message