Samba4 How To

[Scott Lovenberg]

On Fri, Dec 28, 2012 at 2:59 PM, Jon Reeves <jon at vuzzlevuzz.org> wrote:

> Hi all,
>
> I've just successfully set up a Samba 4 DC on Centos 6.3 but found a few
> things that I think should be added to the How To page on the wiki.
>
> First off, can we add a section on what ports need to be opened?  I got
> most of it working from a quick Google, only to find several hours later
> that the Global Catalog could not be contacted.  Here are my iptables rules
> that I think cover everything:
>
> -A INPUT -p tcp -m tcp --dport 3268 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 1024 -j ACCEPT
> -A INPUT -p udp -m udp --dport 389 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 389 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 464 -j ACCEPT
> -A INPUT -p udp -m udp --dport 88 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 88 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 135 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 445 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 139 -j ACCEPT
> -A INPUT -p udp -m udp --dport 137:138 -j ACCEPT
> -A INPUT -p tcp -m tcp --dport 53 -j ACCEPT
> -A INPUT -p udp -m udp --dport 53 -j ACCEPT
>
> Secondly, there are some entries missing from the smb.conf file for setting
> up roaming profiles which prevents the profiles from being created.  This
> is all detailed on this page:
>
> https://wiki.samba.org/index.php/Samba_%26_Windows_Profiles#Roaming_Profiles(specifically
> ,
> the section on "Creating the Roaming Profile Share").
>
>
> Having said that, these were only minor things, and it was actually very
> easy to get working and I'm really impressed with how well it works - many
> thanks to everyone that has worked to put this together
>
> Kind Regards
> Jon
>


Jon, do you have a wiki account on wiki.samba.org that can edit it or do
you need someone with editing privileges to add the content for you?  I'll
add this to the wiki if it's OK with everyone else and you can't do it
yourself.

-- 
Peace and Blessings,
-Scott.