This may help someone else keep their hair, as I pulled out enough of mine.
I have my networks set up with wireless (wifi) on 10.10.10.* and wired (loc) as 192.168.1.* I run net-firewall/shorewall-2.4.2 to keep things nice and separated. What I want to do is allow certain wifi clients to have samba access to the wired network. I can ping devices across the two networks without any problem. I have this 'rule': ACCEPT wifi:10.10.10.69 fw all ACCEPT wifi:10.10.10.69 loc all I've tried it with this too and still nothing. ACCEPT wifi:10.10.10.69 all all If I try to use \\192.168.1.7 from a 10.10.10.69 (both are windowsXP notebooks), XP just times out and says that the network path was not found. Same if I use \\loki instead of the IP. This url talks about how to do this http://www.shorewall.net/samba.htm but it isn't working. I've tried both ways. #ACCEPT fw loc udp 137:139 #ACCEPT fw loc tcp 137,139,445 #ACCEPT fw loc udp 1024: 137 #ACCEPT loc fw udp 137:139 #ACCEPT loc fw tcp 137,139,445 #ACCEPT loc fw udp 1024: 137 # AllowSMB fw loc AllowSMB loc fw AllowSMB fw wifi AllowSMB wifi fw AllowSMB wifi loc AllowSMB loc wifi AllowSMB all all In a 'sanity check' moment, I typed "shorewall clear" (as defined here: http://www.shorewall.net/starting_and_stopping_shorewall.htm) and then tried to connect those two clients, and still got the same message. So I'm not so sure if shorewall is the problem? I looked at the samba.conf file and didn't seen anything. In fact, come to think of it, is this even a samba thing? Isn't samba only a factor if I was running it on the clients? In this case, both devices are windowsXP notebooks that happen to go through a gentoo server (fw/router)... Then it dawns on me, I wonder if XP's built in firewall is killing me? Sho'nuff. Here's the trick: Start->Control Pannel->Windows Firewall->Exceptions (I didn't even know that tab existed!) Double click on "File and Printer Sharing" Then for each of the 4 ports, double click and select "Any" You can also choose certain subnets or whatever, but I figure my clients are already behind the shorewall, so they're fairly protected, and I don't need the headaches. This also seemed to have a positive effect on my gentoo server's samba share which uses [homes] special directive in samba.conf. I couldn't ever get that working, and now it does! D.Vin http://daevid.com -- gentoo-user@gentoo.org mailing list
