[Samba] Directory listing delay with WinXP and IPtables
Jason Gray
jgray at bardel.ca
Tue Jun 1 17:10:04 GMT 2004
I have made a change to my samba servers by placing smb port = 139. The
effect I was trying to stop was a transport end point connect log error.
This did stop the log error but I noticed zero difference in the behaviour
on my win XP boxes. I have 120 XP, 10 win2k boxes 5 samba servers plus 2
samba servers as a clustered PDC on the network. I have read on groups
else-where that if you stop port 445 on the PDC the XP boxes won't be able
to communicate with the non-pdc samba servers. I haven't tried to stop port
445 on the PDC to see if this is the case.
Jason
-----Original Message-----
From: samba-bounces+jgray=bardelanimation.com at lists.samba.org
[mailto:samba-bounces+jgray=bardelanimation.com at lists.samba.org]On
Behalf Of mrojava4 at eastgranby.k12.ct.us
Sent: Monday, May 31, 2004 7:17 PM
To: Randy S
Cc: samba at lists.samba.org
Subject: Re: [Samba] Directory listing delay with WinXP and IPtables
I'd be curious to know whether the behaviour for XP Pro changes if you put
the following parameter into smb.conf
smb ports = 139
This tells samba not to respond to port 445 traffic.
I'm assumming that samba is not participating in an active directory.
Mark
> Sorry if this has been covered before.
>
> I setup a new Samba server using RedHat EL 3, and samba 3.0.2-6.3E (the
> version that comes with Redhat).
>
> We were seeing an intermittant 20 seconcd delay when grabbing a
> directory listing, but only from XP, win 2k was fine.
>
> I couldn't completely nail down when the delay occured but it seemed to
> be when the directory or share hadn't been accessed in a while, ~15mins
> ??. There was never a problem or delay seeing the samba server on the
> browse list.
>
> I turned off iptables and the delay has been drastically reduced, now
> down to 2 secs, which is acceptable.
>
> Obviously I'd like to turn iptables back on.
>
> I'm wondering if there are any special port openings or other iptables
> settings that need adjustments with XP; or if there are adjustments I
> need to make to the XP clients. I've already tried the
> RemoteComputer\NameSpace\ regkey fix to no avail.
>
> It's a very basic iptables setup. I opened up the standard samba ports.
> I've listed the output of 'iptables --list' below.
>
> Any ideas?
>
> TTIA
>
> /randoms/
>
> 'iptables --list' output :
>
> Chain INPUT (policy ACCEPT)
> target prot opt source destination
> RH-Firewall-1-INPUT all -- anywhere anywhere
>
> Chain FORWARD (policy ACCEPT)
> target prot opt source destination
> RH-Firewall-1-INPUT all -- anywhere anywhere
>
> Chain OUTPUT (policy ACCEPT)
> target prot opt source destination
>
> Chain RH-Firewall-1-INPUT (2 references)
> target prot opt source destination
> ACCEPT all -- anywhere anywhere
> ACCEPT icmp -- anywhere anywhere icmp any
> ACCEPT ipv6-crypt-- anywhere anywhere
> ACCEPT ipv6-auth-- anywhere anywhere
> ACCEPT all -- anywhere anywhere state
> RELATED,ESTABLISHED
> ACCEPT tcp -- anywhere anywhere state NEW
> tcp dpt:netbios-ns
> ACCEPT udp -- anywhere anywhere state NEW
> udp dpt:netbios-ns
> ACCEPT tcp -- anywhere anywhere state NEW
> tcp dpt:netbios-dgm
> ACCEPT udp -- anywhere anywhere state NEW
> udp dpt:netbios-dgm
> ACCEPT tcp -- anywhere anywhere state NEW
> tcp dpt:netbios-ssn
> ACCEPT udp -- anywhere anywhere state NEW
> udp dpt:netbios-ssn
> ACCEPT tcp -- anywhere anywhere state NEW
> tcp dpt:microsoft-ds
> ACCEPT udp -- anywhere anywhere state NEW
> udp dpt:microsoft-ds
> ACCEPT tcp -- anywhere anywhere state NEW
> tcp dpt:497
> ACCEPT udp -- anywhere anywhere state NEW
> udp dpt:497
> ACCEPT tcp -- anywhere anywhere state NEW
> tcp dpt:ssh
> REJECT all -- anywhere anywhere reject-with
> icmp-host-prohibited
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: http://lists.samba.org/mailman/listinfo/samba
>
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
More information about the samba
mailing list