Need ipchains help ---- AGAIN! :o

[smp]

To have smb working .. I need to open up the port on my smb server .. I forget how to do this, I've done it before. Redhat 7.3

 

[FUBAR]

Is it ipchains or tables? If you're using 7.3 you should be using tables. Are you blocking all then opening what you need? maybe you could post your script/conf?

 

[Nothinman]

I think lokkit is the RH firewall config, check it out first.

 

[smp]

heh .. what port is smb again? 😱

edit: Lokkit seems a little base
I remember doing this with ipchains in 7.3 on my last install .. just forgot how.
Iptables is in this kernel, but ipchains is what lokkit uses and that is how you config your security during setup.

 

[TheOmegaCode]

Google says smbd uses tcp port 139 and nmbd uses udp port 137

 

[smp]

Thanks Omega
Thing is, I want to write some ipchains (maybe iptables sure) rules to keep people outside my lan from being able to access the smb ports, I guess it's not necessary as I'm behind a firewall, but I'm going to be forwarding ports to this machine .. ftp, ssh, web and maybe others.

 

[smp]

Anyone see a good reason why I shouldn't just edit this file manually? (it says not to)


Firewall configuration written by lokkit
# Manual customization of this file is not recommended.
# Note: ifup-post will punch the current nameservers through the
# firewall; such entries will *not* be listed here.
:input ACCEPT
:forward ACCEPT
😱utput ACCEPT
-A input -s 0/0 -d 0/0 22 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 25 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 80 -p tcp -y -j ACCEPT
-A input -s 0/0 -d 0/0 -i lo -j ACCEPT
-A input -s 24.153.23.66 53 -d 0/0 -p udp -j ACCEPT
-A input -s 24.153.22.67 53 -d 0/0 -p udp -j ACCEPT
-A input -s 0/0 -d 0/0 -p tcp -y -j REJECT
-A input -s 0/0 -d 0/0 -p udp -j REJECT

 

[Nothinman]

If you're going to edit their script, might as well use lokkit right? It lets you put in arbitrary port numbers, right?