From owner-freebsd-current@freebsd.org Tue Mar 1 21:20:18 2016 Return-Path: Delivered-To: freebsd-current@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id DD9D9ABFB2C for ; Tue, 1 Mar 2016 21:20:18 +0000 (UTC) (envelope-from ohartman@zedat.fu-berlin.de) Received: from outpost1.zedat.fu-berlin.de (outpost1.zedat.fu-berlin.de [130.133.4.66]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id A1CDB1B20 for ; Tue, 1 Mar 2016 21:20:18 +0000 (UTC) (envelope-from ohartman@zedat.fu-berlin.de) Received: from inpost2.zedat.fu-berlin.de ([130.133.4.69]) by outpost.zedat.fu-berlin.de (Exim 4.85) for freebsd-current@freebsd.org with esmtps (TLSv1.2:DHE-RSA-AES256-GCM-SHA384:256) (envelope-from ) id <1aariD-003XzP-Ub>; Tue, 01 Mar 2016 22:20:09 +0100 Received: from f052150237.adsl.alicedsl.de ([78.52.150.237] helo=thor.walstatt.dynvpn.de) by inpost2.zedat.fu-berlin.de (Exim 4.85) for freebsd-current@freebsd.org with esmtpsa (TLSv1.2:AES128-GCM-SHA256:128) (envelope-from ) id <1aariD-001A2H-LJ>; Tue, 01 Mar 2016 22:20:09 +0100 Date: Tue, 1 Mar 2016 22:20:04 +0100 From: "O. Hartmann" To: FreeBSD CURRENT Subject: mounting CIFS share (tcp/455) with FreeBSD and mount_smbfs(8) Message-ID: <20160301222004.4cdaafc9.ohartman@zedat.fu-berlin.de> Organization: FU Berlin X-Mailer: Claws Mail 3.13.2 (GTK+ 2.24.29; amd64-portbld-freebsd11.0) MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; boundary="Sig_/9Q4.F_qXCr/Feim3t3BN3Nk"; protocol="application/pgp-signature" X-Originating-IP: 78.52.150.237 X-ZEDAT-Hint: A X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 01 Mar 2016 21:20:19 -0000 --Sig_/9Q4.F_qXCr/Feim3t3BN3Nk Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable I need to mount a CIFS share from windows server 2012 r2 via CIFS, tcp/445 = as NetBIOS service (tcp/139) has been deprecated due to serious vulnerability issues.= =20 Until the disabling of NetBIOS and tcp/139 we used successfully autofs and = mount_smbfs. this is no longer working. I tried to force autofs/mount_smbfs to bind to p= ort 445 on the server via ://@xxx.xxx.xxx.xxx:445/sharename, but this doesn't work. Trying to mount a share from a samba 4.3 server (FreeBSD CURRENT, net/samba= 43, both most recent sources), where I configured samba_server via smb ports =3D 445 to u= se port tcp 445 only and only SMB2 and SMB3 (server min protocol =3D SMB2) protocols via th= e following command: mount_smbfs -I xxx.xxx.xxx.xxx -U a_user -W \ WORKGROUP //a_user@xxx.xxx.xxx.xxx:445/sharename /mnt results in the error mount_smbfs: unable to open connection: syserr =3D RPC struct is bad Setting "smb ports =3D 139,445" and "server min protocol =3D NT1" seems to = work, the share can be bound, but this is SMB over tcp/139 and not CIFS. I desperately need CIFS and I need tcp/445 since tcp/139 is from now on fir= ewalled.=20 So: what do I miss here? Kind regards and thank you in advance, O. Hartmann --Sig_/9Q4.F_qXCr/Feim3t3BN3Nk Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQEcBAEBCAAGBQJW1geEAAoJEOgBcD7A/5N88mYIAKRoy5uN5GomTfAv/fVQKPBa 16YoGgaLvf7HNvzRxGlnRwOqvXuIWne2czkhwPmg3LxHgTLu4pUsECr+MCTxUJXy UH0nmoaQkOqGI0D11Bn67Ot9pztqgL3lT8XyzXDb2BshZhj9J3S7MaX8K2nH20qA 6IXRU7UcZ7DpcbhV0brGHswBg/0TY8ABCjkUn//y25RiEl5N2qxLapB5+B8WwxFP US6bZ2XVm7+P9e09c1/j9K6SaVF6aexvfNA7w1zuWSuIqU5pZeHZgg9IgpQATib8 2Z/L7EymCb/6a3CXAqU/wHQH1BMCvpKw1nLupfjL09n4XBJcSRamZW44V5u4BzQ= =NpeP -----END PGP SIGNATURE----- --Sig_/9Q4.F_qXCr/Feim3t3BN3Nk--