[Samba] Tunneling over SSH
Kevin Bailey
kbailey at freewayprojects.com
Tue Feb 24 14:27:59 GMT 2009
Kevin Bailey wrote:
> Hi,
>
> Has anyone successfully got a Windows PC to access Samba over an SSH
> tunnel. This first of all worked immediately - but now seems to have
> stopped.
>
> I've tried with using putty and myentunnel to set up the tunnel - and
> these are working when I test against a web server.
>
> I've followed instructions at:
>
> http://www.security-hacks.com/2007/05/18/tunneling-smb-over-ssh-secure-file-sharing
>
>
> This has set up another loopback device which means that the Windows
> machine can carry on with its own file sharing.
>
> This is particularly important as my client needs to access Sage
> Accounts data files which are Access files - I want them to continue
> accessing the data using Samba - but as I need to put the server on to
> the internet I need to tunnel the Samba traffic over ssh for security.
>
> Any help, pointers gratefully received.
>
> Kevin Bailey
To reply to my own question...
The best thread I've found RE this issue is
http://social.technet.microsoft.com/Forums/en-US/itprovistanetworking/thread/d30d3c98-58c5-47f6-b5a5-f5620882020d/#page:1
Basically, MS have been childish again and are causing vast amounts of
grief and costs for businesses.
I have trouble viewing the contents of the folders - but this is
probably a Samba issue with the fact that the request is coming from an
unusual IP address - I'll look into it further - these are the logs.
[2009/02/24 14:25:28, 3] smbd/vfs.c:vfs_init_default(219)
Initialising default vfs hooks
[2009/02/24 14:25:28, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (65534, 65534) - sec_ctx_stack_ndx = 0
[2009/02/24 14:25:28, 3] smbd/service.c:make_connection_snum(950)
127.0.0.1 (127.0.0.1) connect to service IPC$ initially as user nobody
(uid=65534, gid=65534) (pid 16262)
[2009/02/24 14:25:28, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2009/02/24 14:25:28, 2] smbd/reply.c:reply_tcon_and_X(711)
Serving IPC$ as a Dfs root
[2009/02/24 14:25:28, 3] smbd/reply.c:reply_tcon_and_X(716)
tconX service=IPC$
[2009/02/24 14:25:28, 3] smbd/process.c:process_smb(1111)
Transaction 2 of length 112
[2009/02/24 14:25:28, 3] smbd/process.c:switch_message(915)
switch message SMBtrans2 (pid 16262) conn 0x83f0cd0
[2009/02/24 14:25:28, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (65534, 65534) - sec_ctx_stack_ndx = 0
[2009/02/24 14:25:28, 3] smbd/msdfs.c:get_referred_path(510)
get_referred_path: Invalid hostname 10.0.0.1 in path \10.0.0.1\sagedata
[2009/02/24 14:25:28, 3] smbd/error.c:error_packet(146)
error packet at smbd/trans2.c(4955) cmd=50 (SMBtrans2)
NT_STATUS_NO_SUCH_FILE
[2009/02/24 14:25:28, 3] smbd/process.c:process_smb(1111)
Transaction 3 of length 112
[2009/02/24 14:25:28, 3] smbd/process.c:switch_message(915)
switch message SMBtrans2 (pid 16262) conn 0x83f0cd0
[2009/02/24 14:25:28, 3] smbd/msdfs.c:get_referred_path(510)
get_referred_path: Invalid hostname 10.0.0.1 in path \10.0.0.1\sagedata
[2009/02/24 14:25:28, 3] smbd/error.c:error_packet(146)
error packet at smbd/trans2.c(4955) cmd=50 (SMBtrans2)
NT_STATUS_NO_SUCH_FILE
Kev
--
*Kevin Bailey*
Director/Programmer - Freeway Projects Limited
Web: www.freewayprojects.com <http://www.freewayprojects.com/>
Email: kbailey at freewayprojects.com <mailto:kbailey at freewayprojects.com>
Phone: +44 (0)1752 267090
More information about the samba
mailing list