[Samba] security=server, port 445 and winnt
idra at samba.org
Sun Dec 4 10:53:00 GMT 2005
On dom, 2005-12-04 at 08:28 +1100, Andrew Bartlett wrote:
> On Fri, 2005-12-02 at 20:17 +0000, Bryan K. Wright wrote:
> > Hi folks,
> > I'm running several samba servers that use "security=
> > server" and "password server" to point authentications to a
> > WinNT pdc. Snooping at the network traffic, I find that
> > the samba server initially tries to connect to the WinNT
> > server through port 445 (which fails), then reverts to 139
> > (which succeeds). I know it's possible to use the
> > "samba ports" parameter to control which ports the samba
> > server listens on, but this seems to have no effect on which
> > ports are used to talk to the password server.
> > I'd like to tell the samba server not to try port
> > 445, since the failover seems to add a few seconds to the
> > time necessary for clients to establish a connection to the
> > samba server.
> > Any ideas? BTW, the samba version is 3.0.20.
> I see two hack ideas: Hack the source to force the port parameter, or
> setup an firewall rule denying outbound connections to port 445 on the
> DC (therefore causing the fallback faster).
REJECTing is better, the DENY would make it wait a long timeout.
More information about the samba