Samba/Firewall problem

[hvn]

I've got a Red Hat 7.2 system running Samba 2.2.1a and ipchains for the firewall. I'm using IPXD to route the NetBIOS packets for the Novell Netware part of the network, and both Netware and Groupwise works 100% with the firewall up and running.

The problem I'm having is that you cannot connect to the Samba shared directory while the firewall is up. If you flush the firewall rules, connect to the Samba share and bring the firewall back up, you can access the data in the share as long as you dont disconnect from the shared folder.

My ipchains is set to allow connections from the internal network to the firewall machine on ports 137,138 and 139, which is used by Netware and Samba, and from the INT to the EXT network. I've allowed specific EXT hosts access up to the Firewall for access to the Samba share.

Does anybody have any idea why the Netware works fine, but Samba that uses the same ports as Netware doesn't?

Any help would be appreciated

Thanx

 

[itdrew]

If you can't even connect......
Did you try connecting using \\IP-Address\share-name
instead of \\server-name\sharename

can you even get the browse list through the IPtables to the other side so the connecting machine can view the shares.

If you can connect with the chains down, but not when the chains are up, it has to be a line from teh iptables (ipchains) that needs to be ommitted or edited.

Let me know if this helps at all.

Drew

 

[ManagerJay]

In your firewall you will need to open ports 137, 138 and 139 so the SAMBA server can be connected to. Additionally, I have found it is also necessary to allow the SAMBA server to listen on the broadcast address for the network.

Jay