From owner-freebsd-questions Mon Sep 28 02:33:20 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id CAA07104 for freebsd-questions-outgoing; Mon, 28 Sep 1998 02:33:20 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from ns.cityip.co.za (ns.cityip.co.za [196.25.223.140]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id CAA06981 for ; Mon, 28 Sep 1998 02:32:24 -0700 (PDT) (envelope-from wjv@cityip.co.za) Received: from wjv by ns.cityip.co.za with local (Exim 1.82 #2) id 0zNZeY-0005lR-00; Mon, 28 Sep 1998 11:31:34 +0200 Message-ID: <19980928113134.E22025@cityip.co.za> Date: Mon, 28 Sep 1998 11:31:34 +0200 From: Johann Visagie To: Forrest Aldrich , freebsd-questions@FreeBSD.ORG Subject: Re: Samba and IPFW Mail-Followup-To: Forrest Aldrich , freebsd-questions@FreeBSD.ORG References: <199809241916.PAA08004@spook.navinet.net> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.91.1i In-Reply-To: <199809241916.PAA08004@spook.navinet.net>; from Forrest Aldrich on Thu, Sep 24, 1998 at 03:16:25PM -0400 X-PGP: ftp://ftp.cityip.co.za/users/wjv/pubkey.asc Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Thu, 24 Sep 1998 at 15:16 SAT, Forrest Aldrich wrote: > > I've been having some difficulty getting Samba to work with packet > filtering turned on. Not being au fait with the intricacies of SMB, I can only offer a "shotgun debugging" tip: Add a line at the end of your ipfw ruleset to log everything that's not been explicitly allowed or denied up to that point: $fwcmd add deny log ip from any to any Then play with SMB under various circumstances, and see what packets are denied (and logged to the console). I'm afraid, though, that from what little I know, you are going to need some fairly permissive rules. :-( -- V Johann Visagie | Email: wjv@CityIP.co.za | Tel: +27 21 419-7878 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message