Date: Thu, 24 Apr 2008 10:42:39 +0200 From: =?windows-1252?Q?Nejc_=8Akoberne?= <nejc@skoberne.net> To: freebsd-net@freebsd.org Subject: Re: Jailed Samba not getting broadcasts Message-ID: <481047FF.4080707@skoberne.net> In-Reply-To: <254549.19682.qm@web46005.mail.sp1.yahoo.com> References: <254549.19682.qm@web46005.mail.sp1.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hello Dewayne, > I have encountered a similar problem, when I configured a SAMBA PDC over > the wan (through IPSEC of course). You might like to consider using > these in your smb.conf: > hosts allow = 10.1. 10.2. > remote announce = 10.1.1.255 10.2.1.255 > remote browse sync = 10.1.1.255 10.2.1.255 I have tried that, but no luck. Still can't resolve the NetBIOS name using solely NetBIOS broadcasts. > If that doesn't solve the need, then perhaps you should modify > /etc/devfs.rules in your base system, to behave a little more > promiscuously, and include something like: > [devfsrules_samba_jail=6] > add include $devfsrules_hide_all > add include $devfsrules_unhide_basic > add include $devfsrules_unhide_login > add path bpf0 unhide I also tried that. Of course I also configured "devfsrules_samba_jail" policy for my jail. So now I can also tcpdump in my jail. But still, those broadcasts seem to be ignored by samba (although I can see them with tcpdump). This works for you? > Note the latter opens a potential security hole if someone breaches > samba jail, providing a means to tcpdump (...) your network This is not a great concern for me since this will be running locally. Thanks a lot for your help, Nejc
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?481047FF.4080707>