[Samba] 1 WIN_DOMAIN/2 subdomains
Tamas Hegedus
hegedus at med.unc.edu
Wed Nov 1 17:09:00 GMT 2006
Hi,
I have a win domain with samba PDC on linux on the public network.
I have another linux machine in that network with 2 network cards.
eth0 on the public network (a.b.c.d)
eth1 on a privet network (192.168.15.1)
There is one computer with win xp connected to eth1.
How can I make that 'private' computer make to be part of the
win-network in the public network?
(If I connect the 'private' computer to the public network (with correct
IP numbers), everything is OK).
I made some port forwarding and firewall adjustment on the linux box
with 2 network cards (see below). But PDC is not accessible.
A, PDC smb.conf:
hosts allow = 127.0.0.1 x.y.0.0/16 192.168.15.0/24
B, private computer:
IP: 192.168.15.23
gw: 192.168.15.1 (eth1 of the linux box)
C, linux box with 2nw cards (iptables extracts):
ACCEPT all -- eth1 * 192.168.15.0/24 0.0.0.0/0
ACCEPT udp -- * * 192.168.15.0/24 0.0.0.0/0
state NEW multiport dports 137,138
ACCEPT udp -- * * x.y.0.0/16 0.0.0.0/0
state NEW multiport dports 137,138
ACCEPT tcp -- * * 192.168.15.0/24 0.0.0.0/0
state NEW tcp dpt:139
ACCEPT tcp -- * * x.y.0.0/16 0.0.0.0/0
state NEW tcp dpt:139
ACCEPT tcp -- * * 192.168.15.0/24 0.0.0.0/0
state NEW tcp dpt:445
ACCEPT tcp -- * * x.y.0.0/16 0.0.0.0/0
state NEW tcp dpt:445
NAT
PREROUTING
DNAT tcp -- * * x.y.0.0/16 a.b.c.d
multiport dports 137,138 to:192.168.15.23
DNAT udp -- * * x.y.0.0/16 a.b.c.d
multiport dports 137,138 to:192.168.15.23
DNAT tcp -- * * x.y.0.0/16 a.b.c.d
multiport dports 139,445 to:192.168.15.23
DNAT udp -- * * x.y.0.0/16 a.b.c.d
multiport dports 139,445 to:192.168.15.23
POSTROUTING
SNAT all -- * eth0 0.0.0.0/0 0.0.0.0/0
to:a.b.c.d
Thanks for your help!
Please consider in your answer that I am not a programmer.
Tamas
More information about the samba
mailing list