|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Peter C. Lai (sirmoo
cowbert.2y.net)Date: Wed Jun 05 2002 - 11:23:57 CDT
you forgot UDP 137
/etc/services shows:
netbios-ns 137/tcp #NETBIOS Name Service
netbios-ns 137/udp #NETBIOS Name Service
netbios-dgm 138/tcp #NETBIOS Datagram Service
netbios-dgm 138/udp #NETBIOS Datagram Service
netbios-ssn 139/tcp #NETBIOS Session Service
netbios-ssn 139/udp #NETBIOS Session Service
You really don't need 445 either, unless you are
routing Active Directory associated traffic.
The network neighborhood functionality is a function
of nmbd, or NETBIOS Name Service, hence you can't access
machines by name if you block 137.
i'm going to pull a kris and say this isn't an exactly security
related question :)
On Wed, Jun 05, 2002 at 12:50:52PM +0200, Mario Pranjic wrote:
> Hi!
>
> I have rules for smb like this:
> # samba
> add 660 allow tcp from any to me 138,139,445 setup keep-state
> add 661 pass udp from any 139 to me 139 keep-state
>
>
> But, I can't see NETBIO name or access host by that name.
>
> Is there anything else I should open?
>
> Thanks!
>
> Mario Pranjic, dipl.ing.
> sistem administrator
> Knjiznica, Institut Rudjer Boskovic
> -------------------------------------
> e-mail: mario.pranjicirb.hr
> ICQ: 72059629
> tel: +385 1 45 60 954 (interni: 1293)
> -------------------------------------
>
>
>
> To Unsubscribe: send mail to majordomoFreeBSD.org
> with "unsubscribe freebsd-security" in the body of the message
-- Peter C. Lai University of Connecticut Dept. of Molecular and Cell Biology | Undergraduate Research Assistant http://cowbert.2y.net/To Unsubscribe: send mail to majordomo
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]