I think you need to find out if you're running some sort of firewall... Because it sounds like you are (vnc problem mentioned as well)... check to see if you're using ipchains or iptables. if you set up the box and you chose defaults, you're using ipchains, since you have to manually move rh70 to iptables. If you chose a security setting during setup, you've employed some sort of ipchains ruleset.
lsmod should show if the modules is loaded, since I think by default it's modular. The only other thing I can think of that's samba-specific is that if you try a *whole bunch* of features right off the bat, you're setting yourself up for failure. Correctly configured, samba works great. But there's a learning curve - how to set up users, shares, sharing mode, type, and levels of access based on UID, GID, and auth. I recommend starting with a BARE MINIMAL smb.conf and testing with a win station on a local interface with no net connection until you gradually tune smb.conf and restart smbd / nmbd until you're happy with the results. THEN TURN OFF ACCESS TO ANYTHING OTHER THAN LOCAL MACHINES YOU WANT TO ACCESS IT FROM. This means ACL within smb.conf _and_ a firewall rule. cheers, -jre On Wed, Jun 19, 2002 at 02:48:38PM -0700, James D. Parra wrote: > Envelope-to: [EMAIL PROTECTED] > Delivery-date: Wed, 19 Jun 2002 17:51:33 -0400 > Delivered-To: [EMAIL PROTECTED] > From: "James D. Parra" <[EMAIL PROTECTED]> > To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> > Subject: RE: Need to open some ports on RedHat 7.0 > X-Mailer: Internet Mail Service (5.5.2653.19) > X-Loop: [EMAIL PROTECTED] > Errors-To: [EMAIL PROTECTED] > X-BeenThere: [EMAIL PROTECTED] > X-Mailman-Version: 2.0.1 > Precedence: bulk > Reply-To: [EMAIL PROTECTED] > List-Help: <mailto:[EMAIL PROTECTED]?subject=help> > List-Post: <mailto:[EMAIL PROTECTED]> > List-Subscribe: <https://listman.redhat.com/mailman/listinfo/redhat-list>, > <mailto:[EMAIL PROTECTED]?subject=subscribe> > List-Id: General Red Hat Linux discussion list <redhat-list.redhat.com> > List-Unsubscribe: <https://listman.redhat.com/mailman/listinfo/redhat-list>, > <mailto:[EMAIL PROTECTED]?subject=unsubscribe> > List-Archive: <https://listman.redhat.com/mailman/private/redhat-list/> > X-Original-Date: Wed, 19 Jun 2002 14:48:38 -0700 > Date: Wed, 19 Jun 2002 14:48:38 -0700 > X-FromHost: (listman.redhat.com) [66.187.233.211] > X-UIDL: mjG!!O)d"!o+8!!U)k!! > > Okay, changed 'only_from = localhost' to include our subnet, but the real > problem still lies with ports not being open on the RedHat 7.0 box. > > I've attempted telneting in with the port set to :901 and the connection is > lost, although I can telnet into the RedHat machine. What can I do to open > ports (specifically, 5900 for VNC and 901 for SWAT) and what other > files/services are involved? I can't seem to find any files that contain > either 'ACCEPT' or 'DENY' any port numbers. > > By the way, the Samba share works fine. Windows machines can attach with > out a problem. > > Thank you, > > James D. Parra > [EMAIL PROTECTED] > > > ----Original Message----- > From: Mike Burger [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, June 19, 2002 12:14 PM > To: '[EMAIL PROTECTED]' > Subject: RE: Need to open some ports on RedHat 7.0 > > > The more secure way would be to add the IP address of the machine from > which he's trying to connect. > > Of course, don't forget to "service xinetd reload" when you're done > modifying the swat file. > > On Wed, 19 Jun 2002, Jason P Holland wrote: > > > > > only_from is only allowing connetions from localhost at this point. if > > you try to connect to swat remotely, it won't work. comment that line out > > > and see if you can connect remotely. > > > > jason > > > > > Thanks for the reply. > > > > > > Went to both host.deny and hosts.allow and found no entries. Also cat > > > /etc/xinetd.d/swat and it looks like it can receive requests(below), but > > > what should 'only_from' be set to? > > > > > > <snip> > > > # default: off > > > # description: SWAT is the Samba Web Admin Tool. Use swat \ > > > # to configure your Samba server. To use SWAT, \ > > > # connect to port 901 with your favorite web browser. > > > service swat > > > { > > > disable = no > > > port = 901 > > > socket_type = stream > > > wait = no > > > only_from = localhost > > > user = root > > > server = /usr/sbin/swat > > > log_on_failure += USERID > > > } > > > <snip> > > > > > > >From a browser, when attempting to connect to 'http://xxx.xxx.xx.xx:901 > > > receive connection refused. Even when this is issued from the local > machine. > > > Can't seem to find what is closing these ports. > > > > > > Thank you in advance, > > > > > > James D. Parra > > > [EMAIL PROTECTED] > > > > > > > > > > > > -----Original Message----- > > > From: Mike Burger [mailto:[EMAIL PROTECTED]] > > > Sent: Wednesday, June 19, 2002 11:18 AM > > > To: '[EMAIL PROTECTED]' > > > Subject: Re: Need to open some ports on RedHat 7.0 > > > > > > > > > Check your hosts.deny and hosts.allow files, and check your > xinetd.d/swat > > > file for the "only_from" parameter. > > > > > > On Wed, 19 Jun 2002, James D. Parra wrote: > > > > > > > Hello, > > > > > > > > After installing Samba and VNC on a RedHat 7.0 file server, found that > by > > > > default most ports are closed. This is fine of course, but I need to > > > connect > > > > to Samba through port 901. > > > > > > > > I didn't find the ipchains file under /etc or under its > subdirectories. > > > > Maybe a fresh RedHat 7.0 install references some other file to obtain > > > which > > > > ports to accept or deny. Any help would be greatly appreciated. > > > > > > > > Thank you, > > > > > > > > James > > > > [EMAIL PROTECTED] > > > > > > > > > > > > > > > > _______________________________________________ > > > > Redhat-list mailing list > > > > [EMAIL PROTECTED] > > > > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > > > > > > > > > > > > > _______________________________________________ > > > Redhat-list mailing list > > > [EMAIL PROTECTED] > > > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > > > > > > > > > _______________________________________________ > > > Redhat-list mailing list > > > [EMAIL PROTECTED] > > > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > > > > > > > > _______________________________________________ > > Redhat-list mailing list > > [EMAIL PROTECTED] > > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > > > _______________________________________________ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list > > > > _______________________________________________ > Redhat-list mailing list > [EMAIL PROTECTED] > https://listman.redhat.com/mailman/listinfo/redhat-list -- joseph r. erlewein v - 231.932.4689 w - 231.935.2364 c - 231.342.7853 p - 231.318.8793 www.erlewein.com [EMAIL PROTECTED] [EMAIL PROTECTED]
msg81428/pgp00000.pgp
Description: PGP signature
