[jcifs] Using jCIFS across sub-net boundaries?

Christopher R. Hertel crh at ubiqx.mn.org
Tue Oct 24 17:11:19 GMT 2006

Morten Sabroe Mortensen wrote:
> Scenario #2:
> The "production" setup og mine is distributed across a "main" subnet and 
> a "tech" subnet with a strict firewall in between. In this case the web-app 
> must run on the "tech" subnet, while the user browser and the WINS/NBNS server 
> is located on the "main" subnet. Access from the browser to the web-app 
> through HTTP is no problem at all - including the regular HTTP NTLM handshake -
>  but the connection from the NtlmHttpFilter through the firewall from 
> the "tech" subnet to the "main" subnet containing the WINS/NBNS server 
> requires... some openings in the firewall.
> What do I open in the firewall to allow the NtlmHttpFilter to talk to the 
> domain-controller?

Try opening ports UDP/137 and TCP/139 and see if that's enough to make
things work properly.  UDP/137 will need to be open in order to assure that
the NBNS server actually gets the name registrations.  Check the NBNS
database to see if the entries are currently there.

Chris -)-----

"Implementing CIFS - the Common Internet FileSystem" ISBN: 013047116X
Samba Team -- http://www.samba.org/     -)-----   Christopher R. Hertel
jCIFS Team -- http://jcifs.samba.org/   -)-----   ubiqx development, uninq.
ubiqx Team -- http://www.ubiqx.org/     -)-----   crh at ubiqx.mn.org
OnLineBook -- http://ubiqx.org/cifs/    -)-----   crh at ubiqx.org

More information about the jcifs mailing list