samba in a separated subnat again

Blair Sutton/Odey B.Sutton at odey.co.uk
Mon Feb 19 09:36:40 GMT 2001 

If the clients are windows boxes change the wins server setting to the IP 
address of your samba server (192.168.30.1). You may also
need to import an lmhosts file with the following entry:-

192.168.30.1    samba         #PRE #DOM:<YOUR_DOMAIN> #NOFNR
192.168.30.1     "<YOUR_DOMAIN>        \0x1b"      #PRE

replacing <YOUR_DOMAIN> with the domain you have chosen. This seems to 
work with NT/95 boxes on Samba 2.0.7.

Hope it helps.





Mester Ákos <mester at xscomputer.hu>
Sent by: samba-admin at us5.samba.org
19/02/2001 08:52

 
        To:     <samba at us5.samba.org>
        cc: 
        Subject:        samba in a separated subnat again


Hi all!!!

I replay my message, if zou don't understand what I want, please tell me
what is not clear!!!
Please if zou have any idea, tan tell it to me

So I have a very big problame. I can't imagine what I do wrong. Maz be it 
is
not samba probame, maybe firewall. I hope someone have met with my 
problame.

Our network looks like this small draw

   Firewall
--------------------------
l195.16.25.58        l-----Internet
l192.168.50.254   l-----downstair(192.168.50/254)
l192.168.41.254   l-----office(192.168.41/24)
l192.168.60.254   l-----Sales(192.168.60/24)
l192.168.30.254   l-----Samba server(192.168.30.1) one machin on this 
subnet
--------------------------

So smb.conf include the follow important lines

  remote announce = 192.168.60.255/xsgroup 192.168.41.255/xsgroup
192.168.50.255/xsgroup
  hosts allow = 192.168.
  preferred master = yes
  domain master = yes
  domain logons = yes
  logon script = %u.bat
  wins support = yes

I tought that it will working, if I give the remothe announce and the wins
support but it dosen't do it.

On the  packet filter firewall have a rull

ipchains -A input -s 192.168.0.0/16 -d 192.168.0.0/16 -j ACCEPT
ipchains -A output -s 192.168.0.0/16 -d 192.168.0.0/16 -j ACCEPT

I think it accept every communication on all ports in all local subnet.

It is a 2.0.6 samba
If I sniff the packet on th lan adapter of samba I see that It send
netbios-dgm packet to the other subnet.
I tought trouble was that, somehow it wasn't accept the 137,138,139 ports 
so
I do a little bit redundant ruls I accep this port on every eth devices in
the FW
But no effect
If I Find computer on my client, I find it.
I don't know, why don't I see the server in my browse list. And the 
srangest
thing, sometimes it is appear in the browse list for half an hour after
disappear.

WHILE ??????

Thenks your help
Akos

More information about the samba mailing list