Тема: Iptables и samba..... (Прочетена 3423 пъти)

VladSun · « **Отговор #15 -:** Oct 24, 2007, 22:37 »

Добре ... а tcpdump на eth1 при опит да се достъпи самбата на рутера какъв трафик ти показва?

emagi · « **Отговор #16 -:** Oct 25, 2007, 15:42 »

Примерен код

root@moon:/etc/rc.d# tcpdump -i eth1
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eth1, link-type EN10MB (Ethernet), capture size 96 bytes
15:37:06.725309 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:06.726894 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:07.476169 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:08.226177 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:10.975911 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:10.975938 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:11.725888 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:12.475769 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:15.225570 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:15.225598 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:15.975494 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:16.725434 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:19.475234 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:19.475330 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:19.475354 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:19.476356 IP 172.16.2.1.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:20.225154 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:20.883350 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:20.975092 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:22.978788 IP 172.16.2.1.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:23.724901 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:23.724929 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:24.474813 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:24.475271 IP 172.16.2.1.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:25.224754 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:26.222874 IP 172.16.2.1.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:27.974560 IP 172.16.2.31.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:27.974586 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:27.975346 IP 172.16.2.1.netbios-dgm > 172.16.2.255.netbios-dgm: NBT UDP PACKET(138)
15:37:28.724480 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST
15:37:29.474418 IP 172.16.2.31.netbios-ns > 172.16.2.255.netbios-ns: NBT UDP PACKET(137): QUERY; REQUEST; BROADCAST

31 packets captured
62 packets received by filter
0 packets dropped by kernel

VladSun · « **Отговор #17 -:** Oct 25, 2007, 15:59 »

Ми, това са портове 137 и 138 UDP - те са отворени ... Хм... и в моята стена ли, като зададеш -P OUТPUT ACCEPT тръгва Sambata и какво дава тогава tcpdump-a?

ПС: Пускай tcpdump-a с -n опция

emagi · « **Отговор #18 -:** Oct 25, 2007, 16:37 »

Сега стана!Не ме питай,какво беше причината ':crazy:'

!
Много ти благодаря,за отделеното време и помоща!
Относно torrent клиента,като направя port forwarding,пак към порт трябва да го пренасоча.ПОгленах,моя торент клиент ползва порт 14386.Сега ако трябва да го пренасоча,към кой порт ще да е това?

VladSun · « **Отговор #19 -:** Oct 25, 2007, 17:37 »

Прочиташ темата дето ти дадох по-горе, избираш си един порт на сървера > 1024, поглеждаш кой ти е порта на торента и попълваш в скрипта ми - ИП-та и портове.

Подобни теми
	Заглавие	Започната от	Отговора	Прегледи	Последна публикация
	Iptables Настройка на програми	mozly	1	7907	Dec 10, 2002, 23:48 от Vency
	iptables Настройка на програми	sunhater	3	7834	Apr 23, 2003, 15:02 от sunhater
	iptables Настройка на програми	dumdum	4	9133	Apr 30, 2003, 10:40 от dumdum
	IPTABLES Настройка на програми	achird	2	8820	May 20, 2003, 14:14 от achird
	проблем със SAMBA + iptables Настройка на програми	ma3x_Virus	1	1012	Jul 08, 2004, 14:41 от sdr

Автор Тема: Iptables и samba..... (Прочетена 3423 пъти)