Iptables rules for SAMBA

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I built the iptables file with Lokkit and I added only the masquerading line...everything is o.k. on my network: then added
the lines that should have made shares available between my firewalled machine (192.168.0.1) and my other machine (192.168.0.10).
What is wrong??? as I cannot share what I share when Iptables is off??
Tnx

Antonio

# Generated by iptables-save v1.2.6a on Wed Feb 12 22:59:37 2003
*nat
:PREROUTING ACCEPT [633:32855]
:POSTROUTING ACCEPT [19:2393]
:OUTPUT ACCEPT [138:9543]
[159:9279] -A POSTROUTING -o ppp0 -j MASQUERADE
COMMIT
# Completed on Wed Feb 12 22:59:37 2003
# Generated by iptables-save v1.2.6a on Wed Feb 12 22:59:37 2003
*mangle
:PREROUTING ACCEPT [1377:443098]
:INPUT ACCEPT [1354:441819]
:FORWARD ACCEPT [5:379]
:OUTPUT ACCEPT [1354:120335]
:POSTROUTING ACCEPT [1409:128767]
COMMIT
# Completed on Wed Feb 12 22:59:37 2003
# Generated by iptables-save v1.2.6a on Wed Feb 12 22:59:37 2003
*filter
:FORWARD ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:RH-Lokkit-0-50-INPUT - [0:0]
:OUTPUT ACCEPT [0:0]

_________________________________________________________________________________-

-A INPUT -p udp -m udp -s 192.168.0.10 -d 192.168.0.1 --dport 137 --sport 137 -j ACCEPT
-A INPUT -p udp -m udp -s 192.168.0.10 -d 192.168.0.1 --dport 138 --sport 138 -j ACCEPT
-A INPUT -p tcp -m tcp -s 192.168.0.10 -d 192.168.0.1 --dport 139 --sport 1024:65535 -j ACCEPT
___________________________________________________________________________________


-A INPUT -j RH-Lokkit-0-50-INPUT

____________________________________________________________________________________

-A OUTPUT -p udp -m udp -s 192.168.0.1 -d 192.168.0.10 --dport 137 --sport 137 -j ACCEPT
-A OUTPUT -p udp -m udp -s 192.168.0.1 -d 192.168.0.10 --dport 138 --sport 138 -j ACCEPT
-A OUTPUT -p tcp -m tcp -s 192.168.0.1 -d 192.168.0.10 --dport 1024:65535 --sport 139 -j ACCEPT
_______________________________________________________________________________________

-A RH-Lokkit-0-50-INPUT -i lo -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p udp -m udp -s 212.216.112.112 --sport 53 -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p udp -m udp -s 212.216.172.62 --sport 53 -j ACCEPT
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp --tcp-flags SYN,RST,ACK SYN -j REJECT --reject-with icmp-port-unreachable
-A RH-Lokkit-0-50-INPUT -p udp -m udp -j REJECT --reject-with icmp-port-unreachable
COMMIT
# Completed on Wed Feb 12 22:59:37 2003




--
Psyche-list mailing list
Psyche-list@redhat.com
https://listman.redhat.com/mailman/listinfo/psyche-list
[Index of Archives]     [Fedora General Discussion]     [Red Hat General Discussion]     [Centos]     [Kernel]     [Red Hat Install]     [Red Hat Watch]     [Red Hat Development]     [Red Hat 9]     [Gimp]     [Yosemite News]

  Powered by Linux