[Samba] linux and win2k: who is blocking whose messages?

p at dirac.org p at dirac.org
Wed Oct 29 22:45:54 GMT 2003


hi all,

i know a whole lot more about MS windows networking than i did this
morning (but it still feels like i don't know much).

the linux samba server is a local, master and preferred browse master.
it's also a WINS server.  linux's IP address is 192.168.0.2.

the win2k machine is 192.168.0.4.

the goal is to browse linux's filesystem from win2k's "computers near
me".  but when i double click "computers near me" i get the error
"testgroup is not accessible.  the network path was not found".

after a bunch more of tinkering, i started to see these hopeful messages
in /var/log/log.smbd:

[2003/10/29 15:26:15, 0] lib/access.c:check_access(328)
  Denied connection from  (192.168.0.4)
[2003/10/29 15:26:15, 1] smbd/process.c:process_smb(883)
  Connection denied from 192.168.0.4
[2003/10/29 15:26:15, 0] lib/access.c:check_access(328)
  Denied connection from  (192.168.0.4)
[2003/10/29 15:26:15, 1] smbd/process.c:process_smb(883)
  Connection denied from 192.168.0.4
[2003/10/29 15:26:28, 0] lib/access.c:check_access(328)
  Denied connection from  (192.168.0.4)

hopeful because now i have something concrete to work with, whereas this
morning it "simply didn't work".

do these logs mean that linux is blocking win2k?  or win2k is blocking
linux?

playing around with win2k, i found 2 things which are related to
security:

1. local area connection properties | TCP/IP | Properties | Advanced |
   Options | IP Security

2. local area connection properties | TCP/IP | Properties | Advanced |
   Options | TCP/IP filtering

unfortunately, by clicking on "properties" of both these items, it
appears that neither one is being used.  so win2k can't be blocking
linux.

on the other hand, i temporarily moved /etc/hosts.deny to a temp file
and put "ALL: ALL" in /etc/hosts.allow.   so linux can't be blocking
win2k.


so who is blocking whom?  anyone have any ideas?

pete



[global]
   workgroup = TESTGROUP
   server string = %h server (Samba %v)
   passdb backend = tdbsam, guest
   passwd program = /usr/bin/passwd %u
   passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n .
   syslog = 0
   max log size = 1000
   name resolve order = lmhosts host wins bcast
   socket options = IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=4096 SO_RCVBUF=4096
   os level = 100
   preferred master = Yes
   domain master = Yes
   dns proxy = No
   wins support = Yes
   panic action = /usr/share/samba/panic-action %d
   hosts allow = 192.169.0.4, 192.168.0.3, 192.168.0.2, 127.
   print command = /usr/bin/lpr -r -P%p %s
   lpq command = /usr/bin/lpq    -P%p %s
   lprm command = /usr/bin/lprm   -P%p %j
   queuepause command = /usr/sbin/lpc -P%p start

[homes]
   comment = Home Directories
   read only = No
   create mask = 0700
   directory mask = 0700
   browseable = No

[lp]
   path = /var/spool/lpd/samba
   read only = No
   create mask = 0700
   printable = Yes

[cdrom]
   comment = Samba server's CD-ROM
   path = /cdrom
   guest ok = Yes
   locking = No

[tmp]
   comment = temporary files
   path = /tmp



More information about the samba mailing list