On Wed, 17 Nov 1999, Robert Burton wrote:
> Hello all,
>
> I'm trying to not have Netbios calls go through my IP Masquerading
> server, but am getting an error with the command I'm trying, and the man
> page didn't help me much.
>
> The command Im trying is:
>
> ipfwadm -F -a deny -S 192.168.2.0/24 137 -D 0.0.0.0/0
As far as I now, if you want to block the NetBios (and if it is a TCP port)
you should add a -p TCP before the -S flag.
But all this using ipmasqadm or ipchains. Not with ipfwadm, thats to athient.
> Other info:
>
> - from using 'ipfwadm -M -l -n"
> IP masquerading entries
> prot expire source destination ports
> udp 04:39.18 192.168.2.15 xxx.xxx.xxx.xxx 137 (62150) ->
> 53
>
> - from /etc/services
> netbios-ns 137/tcp nbns
> netbios-ns 137/udp nbns
> netbios-dgm 138/tcp nbdgm
> netbios-dgm 138/udp nbdgm
> netbios-ssn 139/tcp nbssn
The flags whould be -p TCP and -p UDP
ipchains -F -a deny -p TCP -S 192.168.2.0/24 137 -D 0.0.0.0/0
I don't know if this will help you much, but read the ipchains manual and the
ipmasqadm manual.
--
"La gente que usa VB, solo Ve lo Basico"
-----------------------------------------------------------------
Martín Marqués email: [EMAIL PROTECTED]
Santa Fe - Argentina http://math.unl.edu.ar/~martin/
Administrador de sistemas en math.unl.edu.ar
-----------------------------------------------------------------
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
