[Samba] Tunneling over SSH

Kevin Bailey kbailey at freewayprojects.com
Tue Feb 24 14:27:59 GMT 2009 

Kevin Bailey wrote:
> Hi,
>
> Has anyone successfully got a Windows PC to access Samba over an SSH 
> tunnel.  This first of all worked immediately - but now seems to have 
> stopped.
>
> I've tried with using putty and myentunnel to set up the tunnel - and 
> these are working when I test against a web server.
>
> I've followed instructions at:
>
> http://www.security-hacks.com/2007/05/18/tunneling-smb-over-ssh-secure-file-sharing 
>
>
> This has set up another loopback device which means that the Windows 
> machine can carry on with its own file sharing.
>
> This is particularly important as my client needs to access Sage 
> Accounts data files which are Access files - I want them to continue 
> accessing the data using Samba - but as I need to put the server on to 
> the internet I need to tunnel the Samba traffic over ssh for security.
>
> Any help, pointers gratefully received.
>
> Kevin Bailey
To reply to my own question...

The best thread I've found RE this issue is

http://social.technet.microsoft.com/Forums/en-US/itprovistanetworking/thread/d30d3c98-58c5-47f6-b5a5-f5620882020d/#page:1

Basically, MS have been childish again and are causing vast amounts of 
grief and costs for businesses.

I have trouble viewing the contents of the folders - but this is 
probably a Samba issue with the fact that the request is coming from an 
unusual IP address - I'll look into it further - these are the logs.

[2009/02/24 14:25:28, 3] smbd/vfs.c:vfs_init_default(219)
  Initialising default vfs hooks
[2009/02/24 14:25:28, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (65534, 65534) - sec_ctx_stack_ndx = 0
[2009/02/24 14:25:28, 3] smbd/service.c:make_connection_snum(950)
  127.0.0.1 (127.0.0.1) connect to service IPC$ initially as user nobody 
(uid=65534, gid=65534) (pid 16262)
[2009/02/24 14:25:28, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/02/24 14:25:28, 2] smbd/reply.c:reply_tcon_and_X(711)
  Serving IPC$ as a Dfs root
[2009/02/24 14:25:28, 3] smbd/reply.c:reply_tcon_and_X(716)
  tconX service=IPC$
[2009/02/24 14:25:28, 3] smbd/process.c:process_smb(1111)
  Transaction 2 of length 112
[2009/02/24 14:25:28, 3] smbd/process.c:switch_message(915)
  switch message SMBtrans2 (pid 16262) conn 0x83f0cd0
[2009/02/24 14:25:28, 3] smbd/sec_ctx.c:set_sec_ctx(241)
  setting sec ctx (65534, 65534) - sec_ctx_stack_ndx = 0
[2009/02/24 14:25:28, 3] smbd/msdfs.c:get_referred_path(510)
  get_referred_path: Invalid hostname 10.0.0.1 in path \10.0.0.1\sagedata
[2009/02/24 14:25:28, 3] smbd/error.c:error_packet(146)
  error packet at smbd/trans2.c(4955) cmd=50 (SMBtrans2) 
NT_STATUS_NO_SUCH_FILE
[2009/02/24 14:25:28, 3] smbd/process.c:process_smb(1111)
  Transaction 3 of length 112
[2009/02/24 14:25:28, 3] smbd/process.c:switch_message(915)
  switch message SMBtrans2 (pid 16262) conn 0x83f0cd0
[2009/02/24 14:25:28, 3] smbd/msdfs.c:get_referred_path(510)
  get_referred_path: Invalid hostname 10.0.0.1 in path \10.0.0.1\sagedata
[2009/02/24 14:25:28, 3] smbd/error.c:error_packet(146)
  error packet at smbd/trans2.c(4955) cmd=50 (SMBtrans2) 
NT_STATUS_NO_SUCH_FILE




Kev

-- 
*Kevin Bailey*
Director/Programmer - Freeway Projects Limited
Web: www.freewayprojects.com <http://www.freewayprojects.com/>
Email: kbailey at freewayprojects.com <mailto:kbailey at freewayprojects.com>
Phone: +44 (0)1752 267090

More information about the samba mailing list