• Rechercher un mot :

DavidDecotigny - 11/05/2009 - 18:26 - info

mDNS/avahi across a linux firewall

If you want your ubuntu "Places" / "Network" window to be slightly populated, add the following line to your firewall script:
/sbin/iptables -A FILT -p udp --dport 5353 -d -j ACCEPT

DavidDecotigny - 11/05/2009 - 18:18 - info

iptables rules for samba

My ubuntu laptop could not "reach" the windows network (via smb). It was because of my firewall. The following lines need to be added to the firewall script:
/sbin/modprobe nf_conntrack_netbios_ns
/sbin/iptables -A FILT -p udp --dport 137:138 -j ACCEPT
/sbin/iptables -A FILT -p tcp --dport 139 --syn -j ACCEPT
/sbin/iptables -A FILT -p tcp --dport 445 --syn -j ACCEPT

(where FILT is my filtering chain plugged onto INPUT).

If you use ufw, you will need to add nf_conntrack_netbios_ns to the IPT_MODULES variable in /etc/default/ufw. The other rules should be fairly easy to translate into ufw wording.