[Samba] Using the right network interface

John H Terpstra jht at samba.org
Thu Jan 2 21:50:01 GMT 2003


On Thu, 2 Jan 2003, Ronan Waide wrote:

> On January 2, jht at samba.org said:
> >
> > Check the code for nmbd. You will see that it is essential that nmbd
> > listens on all interfaces. That means it can reply to requests also. It
> > will NOT broadcast on interfaces that are excluded from the interfaces
> > specification if "bind interfaces only" has been set.
>
> Well, yeah, my understanding of the manual page was that if I set bind
> interfaces only, then it'll only respond on those interfaces. So even
> if someone pokes at the dialup interface, they shouldn't get a
> response. This doesn't appear to be the case at the moment.
>
> > can completely isolate your samba server is using a firewall. I am happy
> > to send you my simple iptables script if that will help you.
>
> Well, no, as I said, I'm not a newcomer to this stuff. I'm just not
> inclined to rely 100% on a firewall to do my security; I want the
> services it's protecting to be secure also.

Ok. I understand what you want, but samba does not meet your needs right
now. What is the next step then? How do you propose to solve the problem?

Send us your samba patches and we will consider them.

- John T.
-- 
John H Terpstra
Email: jht at samba.org



More information about the samba mailing list