Samba4 How To

Jon Reeves jon at vuzzlevuzz.org
Fri Dec 28 13:13:20 MST 2012 

Hi Scott,

I've only started using Samba today, so don't have a wiki account (or know
what I would need to do to get edit rights).  If you could add it in that
would be great, and I promise to sign myself up if I come up with any more
changes!

Cheers
Jon
On Dec 28, 2012 8:07 PM, "Scott Lovenberg" <scott.lovenberg at gmail.com>
wrote:

>
>
> On Fri, Dec 28, 2012 at 2:59 PM, Jon Reeves <jon at vuzzlevuzz.org> wrote:
>
>> Hi all,
>>
>> I've just successfully set up a Samba 4 DC on Centos 6.3 but found a few
>> things that I think should be added to the How To page on the wiki.
>>
>> First off, can we add a section on what ports need to be opened?  I got
>> most of it working from a quick Google, only to find several hours later
>> that the Global Catalog could not be contacted.  Here are my iptables
>> rules
>> that I think cover everything:
>>
>> -A INPUT -p tcp -m tcp --dport 3268 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 1024 -j ACCEPT
>> -A INPUT -p udp -m udp --dport 389 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 389 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 464 -j ACCEPT
>> -A INPUT -p udp -m udp --dport 88 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 88 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 135 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 445 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 139 -j ACCEPT
>> -A INPUT -p udp -m udp --dport 137:138 -j ACCEPT
>> -A INPUT -p tcp -m tcp --dport 53 -j ACCEPT
>> -A INPUT -p udp -m udp --dport 53 -j ACCEPT
>>
>> Secondly, there are some entries missing from the smb.conf file for
>> setting
>> up roaming profiles which prevents the profiles from being created.  This
>> is all detailed on this page:
>>
>> https://wiki.samba.org/index.php/Samba_%26_Windows_Profiles#Roaming_Profiles(specifically
>> ,
>> the section on "Creating the Roaming Profile Share").
>>
>>
>> Having said that, these were only minor things, and it was actually very
>> easy to get working and I'm really impressed with how well it works - many
>> thanks to everyone that has worked to put this together
>>
>> Kind Regards
>> Jon
>>
>
>
> Jon, do you have a wiki account on wiki.samba.org that can edit it or do
> you need someone with editing privileges to add the content for you?  I'll
> add this to the wiki if it's OK with everyone else and you can't do it
> yourself.
>
> --
> Peace and Blessings,
> -Scott.
>

More information about the samba-technical mailing list