Hmm, looks like i got it working by playing with the config file a bit more.Hi Ian,
-A RH-Lokkit-0-50-INPUT -i eth0 -p tcp -m multiport --dport 135,139,445 -j ACCEPT
-A RH-Lokkit-0-50-INPUT -i eth0 -p udp -m multiport --dport 135,137,138,139,445 -j ACCEPT
those are the two lines i added, which seem to have it working now. One last question though ... what's the parameter to tell it to only accept this traffic from a specific IP? is it -s ip-address ?
thanks for the help,
ian
I was just having the same problem and here is what Ben told me to do. This is a quote from him:
Yep, if this box is your firewall, protecting your windows clients from the internet, you could be in some serious trouble right now...
If we assume that you are running a standard class C network, then I think the two rules should look like:
-A RH-Lokkit-0-50-INPUT -p tcp -m tcp -s 192.168.1.0/24 --dport 137:139 -j ACCEPT -A RH-Lokkit-0-50-INPUT -p udp -m udp -s 192.168.1.0/24 --dport 137:139 -j ACCEPT
the -s option tells iptables what source IPs to match the packet against, so if your ip range is different, you'll need to put a different number there. Of course, there's always shorewall (http://www.shorewall.net) :)
Ben
HTH. It sure has helped me out.
Lee Perez
thanks!
Ian
-- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
