[Samba] Problems DNS access other network hosts

Rodrigo Cunha rodrigo.root.rj at gmail.com
Tue Oct 11 02:04:10 UTC 2016


Thank Reindl,
my customers are small and I always update firewalls to new versions.
Usually I separate the intranet wifi network for security. focus all network
security firewall.

2016-10-09 5:15 GMT-03:00 Reindl Harald via samba <samba at lists.samba.org>:

>
>
> Am 09.10.2016 um 05:36 schrieb Rodrigo Cunha:
>
>> The problem is resolvido.Removi the standard rules of CENTOS and dns is
>> responding.
>>
>
> and hence one checks first if the service listens and then if "tlent host
> 53" allows a connection
>
> I do not need these, I have a firewall
>>
>
> each host should have it's own packet filter because the firewall don't
> protect from *internal* attacks and in case the one and only firewall has a
> bug you are not exposed
>
> Below is a table with the filter and reject rules CENTOS
>>
>
> that's how a host typically has to look like - just only allow responses
> and explicit allowed ports, reject the rest unconditional
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>



-- 
Atenciosamente,
Rodrigo da Silva Cunha


More information about the samba mailing list