[Samba] Packet filter rules for "outgoing" SMB connections/mounts
only?
Alan Becker
beckera at softrends.com
Thu Feb 19 23:47:10 GMT 2004
Try the firewall script at: http://projectfiles.com/firewall. I have
used this script
on RH 7.x, 8 and 9 boxes. It is very simple to use for simple
applications, and
yet has considerable power for more challenging situations. It requires
iptables
in order to operate. The "graphical" installer actually uses 'dialog',
and has a
text-based menu interface.
If I understand your request correctly, it would be handled that way by
default.
Once the firewall is started, any external connection that is not
explicitly allowed
will be denied.
HTH,
A. Becker
Rashkae wrote:
>The standard internet sharing firewall scripts will do this and then
>some automagically. See www.netfilter.org for examples.
>
>On Thu, Feb 19, 2004 at 12:03:36PM +0100, Andreas Schildbach wrote:
>
>
>>Hello everyone,
>>
>>Is it possible to configure the packet filter for Linux kenel 2.4.x in a
>>way so outgoing connections (mounts) from the firewalled machines (to a
>>specific IP address) are possible, but no incoming SMB mounts are
>>allowed at all.
>>
>>In other words, I want to be able to mount a share of an external
>>machine, but like to keep the security risks involved as small as possible.
>>
>>Regards,
>>
>>Andreas
>>
>>--
>>To unsubscribe from this list go to the following URL and read the
>>instructions: http://lists.samba.org/mailman/listinfo/samba
>>
>>
More information about the samba
mailing list