[Samba] security=server, port 445 and winnt

Andrew Bartlett abartlet at samba.org
Sat Dec 3 21:28:18 GMT 2005

On Fri, 2005-12-02 at 20:17 +0000, Bryan K. Wright wrote:
> Hi folks,
> 	I'm running several samba servers that use "security=
> server" and "password server" to point authentications to a
> WinNT pdc.  Snooping at the network traffic, I find that 
> the samba server initially tries to connect to the WinNT
> server through port 445 (which fails), then reverts to 139
> (which succeeds).  I know it's possible to use the
> "samba ports" parameter to control which ports the samba
> server listens on, but this seems to have no effect on which
> ports are used to talk to the password server.
> 	I'd like to tell the samba server not to try port
> 445, since the failover seems to add a few seconds to the
> time necessary for clients to establish a connection to the
> samba server.
> 	Any ideas?  BTW, the samba version is 3.0.20.

I see two hack ideas:  Hack the source to force the port parameter, or
setup an firewall rule denying outbound connections to port 445 on the
DC (therefore causing the fallback faster).

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Student Network Administrator, Hawker College  http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20051204/bda419b7/attachment.bin

More information about the samba mailing list