Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Samba, RAS, VPN, what is the difference?

Status
Not open for further replies.
xazax

xazax

Technical User
Mar 26, 2002
27
US
Before I begin to ask deliberate questions, I will introduce the little background, knowledge, and what I currently operate. I was first inroduced to the idea of remote access services while studying my WinNT4 certification course but never actually configured or worked with RAS but have a general idea of what it does.
At my current job in doing technical support for a networking hardware vendor, one of my product lines of support are small home based routers. We have VPN routers, but dont have a high-frequency call rate on them, so my experience with VPN is most commonly encountered by helping many sales reps from IBM who wish to access their company network from their homes and have access problems when implementing our normal routers behind their cable/dsl modems. Those problems are easily resolved by disabling "Block WAN Request" and enabling PPTP Passthrough, maybe even sometimes IPSEC depending on who the customers product is being used at the remote location.

I have an understanding of the concept of VPN and a little on RAS based on my expirence, but here is one more for you experts; SAMBA. I know basically what SAMBA does because I have it configured on my home network and can map the shares to my NFS servers thereby giving my Windows 98 clients access to my MP3's, and other shares that I desire. On top of that I edited the smb.conf file's "REMOTE BROWSE" and "REMOTE ANNOUNCE" features and somehow got it to work, by expirimenting from my jobs workstations(SECRET, I'll get busted if is say who I work for). Samba works remotely and I am extremely impressed with it.

Here are my naive questions. What is the major difference between the three technologies as far as applicable uses, performance, and security. Why use one over the other and if Samba alone posed to be vulnerable would VPN be combined with it. I ask this question because I find Samba/NFS togehter one of the best accomplishments with Linux yet. I find Samba both cost effective and very promising to use because of the following reasons.
1) My servers require minimal hardware resources and interaction with the systems themselves.
2) Every Windows from 95 to XP client I have tried to access my Samba works without alot of configuration or
RAM hogging third party client programs.
3) Unlike VPN, I am not tied to the remote locations intranet and can access the internet locally through my
DSL connection with much quicker access.
Questions:
1) Why do very few "general business people" know about Samba?
2) Is Samba yesterday's news, or is Samba something that was tried and failed to succeed in the business world?
3)Does no one understand Samba and get impatient like with most Linux configurations. (Few of my freinds and colleagues dont appreciate Linux at all, even the techie ones, so imagine end business users)
4) Does VPN or RAS(if its still even used) provided better performance, security,etc.?
5)Is Samba implemintaion still in its early stages, unlike
Apache which everyone seems to either know or talk about in the business?
5)How and where could I market Samba, given that Im one of the few people that I know in my area, and is it worth it?
I appreciate any opinions, but my descisions will be made by opinions that have facts that I can research on my own to determine if Samba can become as popular and as an alternative to other technologies, I didnt mention Citrix because I only hear about it but have never read, seen, or worked with anyone who mentioned its presence.
Thanks Again.
 
Sort by date Sort by votes
Samba, VPN and RAS are 3 very different things.

Samba is a software application that allows a Linux/FreeBSD/etc. machine to communicate using Windows native networking architecture.

VPN is virtual private networking. This is a communications protocol that allows a remote compter/network to access a local compter/network over public IP networks with a high degree of security.

RAS is a service by Microsoft that allows you to setup a computer to act as a dial-up server and provide some security by verifying the user against the NT user base.

The three services have nothing in common with one another, but can be used together to build a nice WAN over dial-up and public IP networks.

There is still a reluctance to use open-source products in the business market, but this is starting to weaken.

I would suggest that you join your local Linux Users Group to get some more ideas on how to best market your services.
 
Upvote 0 Downvote
Airplane, Car, Train, what's the difference?

Where do you start with this... Some google research should clear it up for you.
Disclaimer:
Beware: Studies have shown that research causes cancer in lab rats.
 
Upvote 0 Downvote
Heres one for you xazax.
You say you have maanged to get samba to work remotely. I guess you mean that you could, from your house, authenticate your windows machine to samba server to load the shares, and all this happen over the public net. I have been succesful at setting up samba to be accessed within the intranet, but have failed to do so across the wan.
Would apprecaie your help in figuring out my probem. Could you possbly post your smb.conf file highlighting the parts which you think are responsible for enabling this fetarure. Heres my smb.conf file.

# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options (perhaps too
# many!) most of which are not shown in this example
#
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentry and a ; for parts of the config file that you
# may wish to enable
#
# NOTE: Whenever you modify this file you should run the command "testparm"
# to check that you have not made any basic syntactic errors.
#
#======================= Global Settings =====================================
[global]

domain admin users = root
hide dot files = yes
add user script = /usr/sbin/useradd -d /dev/null -g machines -c Machine -s /bin/false -M %u


# workgroup = NT-Domain-Name or Workgroup-Name
#netbios name = chaos
workgroup = CSL

# server string is the equivalent of the NT Description field
server string = CSL Samba Server

# This option is important for security. It allows you to restrict
# connections to machines which are on your local network. The
# following example restricts access to two C class networks and
# the "loopback" interface. For more examples of the syntax see
# the smb.conf man page
; hosts allow = 192.168.1. 192.168.2. 127.

# if you want to automatically load your printer list rather
# than setting them up individually then you'll need this
; printcap name = /etc/printcap
; load printers = yes

# It should not be necessary to spell out the print system type unless
# yours is non-standard. Currently supported print systems include:
# bsd, sysv, plp, lprng, aix, hpux, qnx
; printing = bsd

# Uncomment this if you want a guest account, you must add this to /etc/passwd
# otherwise the user "nobody" is used
; guest account = pcguest

# this tells Samba to use a separate log file for each machine
# that connects
log file = /var/log/samba/log.%m
#debug level = 0
#include = /etc/samba/smb.conf.%m

# Put a capping on the size of the log files (in Kb).
max log size = 50

# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = user
# Use password server option only with security = server
; password server = <NT-Server-Name>

# Password Level allows matching of _n_ characters of the password for
# all combinations of upper and lower case.
; password level = 8
; username level = 8

# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read those documents
encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd

# The following are needed to allow password changing from Windows to
# update the Linux sytsem password also.
# NOTE: Use these with 'encrypt passwords' and 'smb passwd file' above.
# NOTE2: You do NOT need these to allow workstations to change only
# the encrypted SMB passwords. They allow the Unix password
# to be kept in sync with the SMB password.
# unix password sync = Yes
# passwd program = /usr/bin/yppasswd %u
# passwd chat = *Changing*NIS*account* %o\n *Changing*NIS*password* %n\n *retype*new*password* %n\n *NIS*password*changed*

# passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
#Password sync now set up to run on linux if so desired --JTA

# Unix users can map to different SMB User names
; username map = /etc/samba/smbusers
# NB: This may be important later. JTA

# Using the following line enables you to customise your configuration
# on a per machine basis. The %m gets replaced with the netbios name
# of the machine that is connecting
; include = /etc/samba/smb.conf.%m

# Most people will find that this option gives better performance.
# See speed.txt and the manual pages for details
socket options = TCP_NODELAY
#SO_RCVBUF=8192 SO_SNDBUF=8192

# Configure Samba to use multiple interfaces
# If you have multiple network interfaces then you must list them
# here. See the man page for details.
interfaces = 141.161.229.114/255.255.255.0

# Configure remote browse list synchronisation here
# request announcement to, or browse list sync from:
# a specific host or from / to a whole subnet (see below)
; remote browse sync = 192.168.3.25 192.168.5.255
# Cause this host to announce itself to local subnets here
remote announce = 67.160.102.42/CSL 67.160.102.43/CSL

# Browser Control Options:
# set local master to no if you don't want Samba to become a master
# browser on your network. Otherwise the normal election rules apply
;local master = yes

# OS Level determines the precedence of this server in master browser
# elections. The default value should be reasonable
os level = 34

# Domain Master specifies Samba to be the Domain Master Browser. This
# allows Samba to collate browse lists between subnets. Don't use this
# if you already have a Windows NT domain controller doing this job
domain master = yes

# Preferred Master causes Samba to force a local browser election on startup
# and gives it a slightly higher chance of winning the election
preferred master = yes

# Use only if you have an NT server on your network that has been
# configured at install time to be a primary domain controller.
; domain controller = <NT-Domain-Controller-SMBName>

# Enable this if you want Samba to be a domain logon server for
# Windows95 workstations.
domain logons = yes

# if you enable domain logons then you may want a per-machine or
# per user logon script
# run a specific logon batch file per workstation (machine)
; logon script = %m.bat
# run a specific logon batch file per username
logon script = logon.bat

# Where to store roving profiles (only for Win95 and WinNT)
# %L substitutes for this servers netbios name, %U is username
# You must uncomment the [Profiles] share below
logon path = \\%L\Profiles\%U
logon drive = X:

# All NetBIOS names must be resolved to IP Addresses
# 'Name Resolve Order' allows the named resolution mechanism to be specified
# the default order is &quot;host lmhosts wins bcast&quot;. &quot;host&quot; means use the unix
# system gethostbyname() function call that will use either /etc/hosts OR
# DNS or NIS depending on the settings of /etc/host.config, /etc/nsswitch.conf
# and the /etc/resolv.conf file. &quot;host&quot; therefore is system configuration
# dependant. This parameter is most often of use to prevent DNS lookups
# in order to resolve NetBIOS names to IP Addresses. Use with care!
# The example below excludes use of name resolution for machines that are NOT
# on the local network segment
# - OR - are not deliberately to be known via lmhosts or via WINS.
# JOHN I CHANGED THIS -JVM 11/12: name resolve order = wins hosts bcast
# Nishant changed this on Jan 30/2002 @2:30 PM. Previous: lmhosts bcast
name resolve order = wins lmhosts bcast

# Windows Internet Name Serving Support Section:
# WINS Support - Tells the NMBD component of Samba to enable it's WINS Server
# Nishant changed this on Jan 30/2002 @2:30 PM. Previous: wins support = yes
wins support = yes

# WINS Server - Tells the NMBD components of Samba to be a WINS Client
# Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
# Nishant changed this on Jan 30/2002 @2:30 PM. Previous: ; wins server = w.x.y.z
; wins server = 141.161.229.114

# WINS Proxy - Tells Samba to answer name resolution queries on
# behalf of a non WINS capable client, for this to work there must be
# at least one WINS Server on the network. The default is NO.
; wins proxy = yes

# DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
# via DNS nslookups. The built-in default for versions 1.9.17 is yes,
# this has been changed in version 1.9.18 to no.
dns proxy = no

# Case Preservation can be handy - system default is _no_
# NOTE: These can be set on a per share basis
; preserve case = no
; short preserve case = no
# Default case is normally upper case for all DOS files
; default case = lower
# Be very careful with case sensitivity - it can break things!
; case sensitive = no

#kernel oplocks = yes

#invalid users = bin daemon adm sync shutdown halt mail news uucp operator gopher

#time server = yes

#============================ Share Definitions ==============================
#[homes]
#comment = Home Directories
#browseable = no
#writable = yes

[samba]
path = /home/csl1/Samba/samba
comment = CSL Windows Data Server
#valid users = @csl-users
writable = yes
guest ok = no
wide links = yes
#force group = csl
veto files = /*.mp3/
force directory mode = 775
dont descend = profiles netlogon

[csl1]
path = /home/csl1/
comment = CSL1
wide links = yes


# Un-comment the following and create the netlogon directory for Domain Logons
[netlogon]
comment = Network Logon Service
path = /home/csl1/Samba/netlogon
guest ok = yes
writable = no
share modes = no
#browseable = no

# Un-comment the following to provide a specific roving profile share
# the default is to use the user's home directory
[Profiles]
path = /home/csl1/Samba/profiles
browseable = yes
#guest ok = no
writable = yes
create mode = 0700
directory mode = 0700

# NOTE: If you have a BSD-style print system there is no need to
# specifically define each individual printer
[printers]
comment = All Printers
path = /var/spool/samba
browseable = no
# Set public = yes to allow user 'guest account' to print
guest ok = no
writable = no
printable = yes

# This one is useful for people to share files
;[tmp]
; comment = Temporary file space
; path = /tmp
; read only = no
; public = yes

# A publicly accessible directory, but read only, except for people in
# the &quot;staff&quot; group
;[public]
; comment = Public Stuff
; path = /home/samba
; public = yes
; read only = yes
; write list = @staff

# Other examples.
#
# A private printer, usable only by fred. Spool data will be placed in fred's
# home directory. Note that fred must have write access to the spool directory,
# wherever it is.
;[fredsprn]
; comment = Fred's Printer
; valid users = fred
; path = /homes/fred
; printer = freds_printer
; public = no
; writable = no
; printable = yes

# A private directory, usable only by fred. Note that fred requires write
# access to the directory.
;[fredsdir]
; comment = Fred's Service
; path = /usr/somewhere/private
; valid users = fred
; public = no
; writable = yes
; printable = no

# a service which has a different directory for each machine that connects
# this allows you to tailor configurations to incoming machines. You could
# also use the %u option to tailor it by user name.
# The %m gets replaced with the machine name that is connecting.
;[pchome]
; comment = PC Directories
; path = /usr/pc/%m
; public = no
; writable = yes

# A publicly accessible directory, read/write to all users. Note that all files
# created in the directory by users will be owned by the default user, so
# any user with access can delete any other user's files. Obviously this
# directory must be writable by the default user. Another user could of course
# be specified, in which case all files would be owned by that user instead.
;[public]
; path = /usr/somewhere/else/public
; public = yes
; only guest = yes
; writable = yes
; printable = no

# The following two entries demonstrate how to share a directory so that two
# users can place files there that will be owned by the specific users. In this
# setup, the directory should be writable by both users and should have the
# sticky bit set on it to prevent abuse. Obviously this could be extended to
# as many users as required.
;[myshare]
; comment = Mary's and Fred's stuff
; path = /usr/somewhere/shared
; valid users = mary fred
; public = no
; writable = yes
; printable = no
; create mask = 0765


Thanks.
 
Upvote 0 Downvote
Im having trouble copying and pasting on netscape in linux, and in windows when i did a type smb.conf > smbcf.txt and get nothing but garbage in the output.
my email address is lxfrank90@hotmail.com and you can email me so that I can repy it to you as an attachment. Sorry I dont have a better way of getting the file to you now.
 
Upvote 0 Downvote
Hey Sonun,
I finally figured out how to paste it here:
As you'll see I dont have the cleanest smb.conf file but
it works locally as well as remotely.
I will put an asterisk on what I believe is responsible for enabling my remote featrures.
Anyone interested can use this file as a reference and is also welcome to give me additional tips.
Disclaimer:
I did not really read any formal instructions other than the error messages everytime I ran testparm and the log files in my /var/log/samba directory.

# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options (perhaps too
# many!) most of which are not shown in this example
#
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentry and a ; for parts of the config file that you
# may wish to enable
#
# NOTE: Whenever you modify this file you should run the command &quot;testparm&quot;
# to check that you have not many any basic syntactic errors.
#
#======================= Global Settings =====================================
[global]

# workgroup = NT-Domain-Name or Workgroup-Name
workgroup = xresearchlabs

# server string is the equivalent of the NT Description field
server string = SambaZeuz

# This option is important for security. It allows you to restrict
# connections to machines which are on your local network. The
# following example restricts access to two C class networks and
# the &quot;loopback&quot; interface. For more examples of the syntax see
# the smb.conf man page
; hosts allow = 192.168.1. 192.168.2. 127.
; hosts allow =
*{ below I edited the host allow section by adding the IPs that I want to welcome into my network; I also added them to my host.allow file}&quot;
* hosts allow = 127.0.0.1 192.168.1 128.170.135.115
* 205.229.253.151 66.75.185.204 24.130.248.108
* 66.75.189.98 172.156.251.166
# if you want to automatically load your printer list rather
# than setting them up individually then you'll need this
printcap name = /etc/printcap
load printers = yes

# It should not be necessary to spell out the print system type unless
# yours is non-standard. Currently supported print systems include:
# bsd, sysv, plp, lprng, aix, hpux, qnx
; printing = bsd

# Uncomment this if you want a guest account, you must add this to /etc/passwd
# otherwise the user &quot;nobody&quot; is used
; guest account = pcguest

# this tells Samba to use a separate log file for each machine
# that connects
log file = /var/log/samba/log.%m

# Put a capping on the size of the log files (in Kb).
max log size = 50

# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = user
# Use password server option only with security = server
; password server = <NT-Server-Name>

# Password Level allows matching of _n_ characters of the password for
# all combinations of upper and lower case.
password level = 8
username level = 8

# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read those documents
encrypt passwords = yes
smb passwd file = /etc/smbpasswd

# The following are needed to allow password changing from Windows to
# update the Linux sytsem password also.
# NOTE: Use these with 'encrypt passwords' and 'smb passwd file' above.
# NOTE2: You do NOT need these to allow workstations to change only
# the encrypted SMB passwords. They allow the Unix password
# to be kept in sync with the SMB password.
unix password sync = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd*all*authentication*tokens*updated*successfully*

# Unix users can map to different SMB User names
username map = /etc/smbusers

# Using the following line enables you to customise your configuration
# on a per machine basis. The %m gets replaced with the netbios name
# of the machine that is connecting
; include = /etc/smb.conf.%m

# Most people will find that this option gives better performance.
# See speed.txt and the manual pages for details
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

# Configure Samba to use multiple interfaces
# If you have multiple network interfaces then you must list them
# here. See the man page for details.
; interfaces = 192.168.12.2/24 192.168.13.2/24
*{ Very important below are the remote browse and remote annonce sections, these are my current settings}*
# Configure remote browse list synchronisation here
# request announcement to, or browse list sync from:
# a specific host or from / to a whole subnet (see below)
; remote browse sync = 192.168.3.25 192.168.5.255
remote browse sync = 192.168.1.22 66.75.185.204
remote browse sync = 192.168.1.22 128.170.135.115
remote browse sync = 192.168.1.22 24.130.248.108
remote browse sync = 192.168.1.22 66.75.189.98
remote browse sync = 192.168.1.22 172.156.251.166
# Cause this host to announce itself to local subnets here
; remote announce = 192.168.1.255 192.168.2.44
remote announce = 192.168.1. 128.170.135.115
remote announce = 192.168.1. 24.130.248.108
remote announce = 192.168.1. 66.75.189.98
remote announce = 192.168.1. 172.156.251.166
# Browser Control Options:
# set local master to no if you don't want Samba to become a master
# browser on your network. Otherwise the normal election rules apply
; local master = no
local master = yes
# OS Level determines the precedence of this server in master browser
# elections. The default value should be reasonable
; os level = 33
os level = 33
# Domain Master specifies Samba to be the Domain Master Browser. This
# allows Samba to collate browse lists between subnets. Don't use this
# if you already have a Windows NT domain controller doing this job
; domain master = yes
domain master = yes
# Preferred Master causes Samba to force a local browser election on startup
# and gives it a slightly higher chance of winning the election
; preferred master = yes
preferred master = yes
# Use only if you have an NT server on your network that has been
# configured at install time to be a primary domain controller.
; domain controller = <NT-Domain-Controller-SMBName>

# Enable this if you want Samba to be a domain logon server for
# Windows95 workstations.
domain logons = yes

# if you enable domain logons then you may want a per-machine or
# per user logon script
# run a specific logon batch file per workstation (machine)
; logon script = %m.bat
# run a specific logon batch file per username
; logon script = %U.bat

# Where to store roving profiles (only for Win95 and WinNT)
# %L substitutes for this servers netbios name, %U is username
# You must uncomment the [Profiles] share below
logon path = \\%L\Profiles\%U

# All NetBIOS names must be resolved to IP Addresses
# 'Name Resolve Order' allows the named resolution mechanism to be specified
# the default order is &quot;host lmhosts wins bcast&quot;. &quot;host&quot; means use the unix
# system gethostbyname() function call that will use either /etc/hosts OR
# DNS or NIS depending on the settings of /etc/host.config, /etc/nsswitch.conf
# and the /etc/resolv.conf file. &quot;host&quot; therefore is system configuration
# dependant. This parameter is most often of use to prevent DNS lookups
# in order to resolve NetBIOS names to IP Addresses. Use with care!
# The example below excludes use of name resolution for machines that are NOT
# on the local network segment
# - OR - are not deliberately to be known via lmhosts or via WINS.
; name resolve order = wins lmhosts bcast ; default
name resolve order = wins lmhosts bcast
# Windows Internet Name Serving Support Section:
# WINS Support - Tells the NMBD component of Samba to enable it's WINS Server
; wins support = yes
; wins support = yes
# WINS Server - Tells the NMBD components of Samba to be a WINS Client
# Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
; wins server = w.x.y.z
; wins server = 192.168.1.22
# WINS Proxy - Tells Samba to answer name resolution queries on
# behalf of a non WINS capable client, for this to work there must be
# at least one WINS Server on the network. The default is NO.
; wins proxy = yes

# DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
# via DNS nslookups. The built-in default for versions 1.9.17 is yes,
# this has been changed in version 1.9.18 to no.
dns proxy = no
unix password sync = yes
netbios name = SambaZeuz
encrypt passwords = yes
map to guest = never
password level = 0
null passwords = no
os level = 0
preferred master = no
domain master = yes
wins support = no
dead time = 0
debug level = 0
allow hosts = 127.0.0.1 192.168.1. 128.170.135. 66.75.179.115

# Case Preservation can be handy - system default is _no_
# NOTE: These can be set on a per share basis
; preserve case = no
; short preserve case = no
# Default case is normally upper case for all DOS files
default case = lower
# Be very careful with case sensitivity - it can break things!
case sensitive = no

#============================ Share Definitions ==============================
#[homes]
# comment = Home Directories
# browseable = yes
# writeable = yes
#adding
# path = /home/
# browseable = yes
# writable = yes
# public = yes
# only user = yes
# valid users =
# allow hosts = 127.0.0.1 192.168.1.
# user = specialkay luana
# max connections = 9999999999

# Un-comment the following and create the netlogon directory for Domain Logons
# [netlogon]
# comment = Network Logon Service
# path = /home/netlogon
# guest ok = yes
# writable = yes
# share modes = yes


# Un-comment the following to provide a specific roving profile share
# the default is to use the user's home directory
#[Profiles]
# path = /home/profiles
# browseable = yes
# guest ok = yes
;Adding more user profiles
#[agentx]
# path = /home/agentx
# browseable = no
# guest ok = no
#[luana]
# path = /home/luana
# browseable = yes
# guest ok = yes
#[specialkay]
# path = /home/specialkay
# browseable = yes
# guest ok = yes
#[inteli]
# path = /home/inteli
# browseable = yes
# guest ok = yes
# NOTE: If you have a BSD-style print system there is no need to
# specifically define each individual printer
#[printers]
# comment = All Printers
# path = /var/spool/samba
# browseable = no
# Set public = yes to allow user 'guest account' to print
# guest ok = no
# writable = no
# printable = yes
#[netlogon]
# path = /home/netlogon
# writeable = yes
# printable = yes
#[mp3s]
# path = /mnt/oseus
# browseable = yes
# public = yes
# guest only = no
# writable = no
# only user = no
# admin users = specialkay
#[dumps]
# comment = Media Downloads To OseusNFS
# path = /mnt/dumps
# browseable = yes
# writeable = yes
# only user = no

[luana]
comment = Bratt's Directory
path = /home/luana/HomeBase
valid users = luana
public = no
writeable = yes

[marky]
comment = Marky's Home
path = /home/marky/HomeBase
valid users = marky
public = no
writeable = no

[inteli]
comment = Inteli's Home
path = /home/inteli/HomeBase
valid users = inteli
public = no
writeable = yes


[ateli]
comment = Ateli's Home
path = /home/ateli/HomeBase
valid users = ateli
public = no
writeable = no
[daroyal]
comment = Laurence's Home
path = /home/daroyal/HomeBase
valid users = daroyal
public = no
writeable = no
[carnicle]
comment = Carnicle's Home
path = /home/carnicle/HomeBase
valid users = carnicle
public = no
writeable = no
[asdf]
comment = Lenny's Home
path = /home/asdf/HomeBase
valid users = asdf
public = no
writeable = no
[frnasa]
comment = Frank's Home
path = /home/frnasa/HomeBase
valid users = frnasa
public = no
writeable = no
[mikesd]
comment = Mike's Home
path = /home/mikessdca/HomeBase
valid users = mikessdca
public = no
writeable = no
[twinlinp]
comment = Pat's Home
path = /home/twinlinp/HomeBase
valid users = twinlinp
public = no
writeable = no
[jrc680]
comment = RJ's Home
path = /home/jrc680/HomeBase
valid users = jrc680
public = no
writeable = no
[gil007]
comment = Gil's Home
path = /home/gil007/HomeBase
valid users = gil007
public = no
writeable = no
[dare77]
comment = Darrel's Home
path = /home/dare77/HomeBase
valid users = dare77
public = no
writeable = no
[jimpcl]
comment = Jim's Home
path = /home/jimatpcl/HomeBase
valid users = jimatpcl
public = no
writeable = no
[brian]
comment = Sir Brian
path = /home/brian/HomeBase
valid users = brian
public = no
writeable = no
[noey]
comment = Solar Area Network
path = /home/noey/HomeBase
valid users = noey
public = no
writeable = no
[leoncion]
comment = Solar Tech
path = /home/leoncion/HomeBase
valid users = leoncion
public = no
writeable = no
[chris]
comment = SuperTech
path = /home/chris/HomeBase
valid users = chris
public = no
writeable = no
[jbod55]
comment = Tech Directory
path = /home/jbod55/HomeBase
valid users = jbod55
public = no
writeable = no
[extacy]
comment = Incoming Drug Traffic
path = /home/extacy/HomeBase
valid users = extacy
public = no
writeable = yes
[waskns]
comment = Winamp Skins from TontoFTP
path = /mnt/waskins
browseable = yes
writeable = no
only user = no
admin users = specialkay
[TontoFtp]
comment = TontoFTP
path = /mnt/tonto
writeable = no
only user = no
admin users = inteli
 
Upvote 0 Downvote
Hey Sonun,
I finally figured out how to paste it here:
As you'll see I dont have the cleanest smb.conf file but
it works locally as well as remotely.
I will put an asterisk on what I believe is responsible for enabling my remote featrures.
Anyone interested can use this file as a reference and is also welcome to give me additional tips.
Disclaimer:
I did not really read any formal instructions other than the error messages everytime I ran testparm and the log files in my /var/log/samba directory.

# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options (perhaps too
# many!) most of which are not shown in this example
#
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentry and a ; for parts of the config file that you
# may wish to enable
#
# NOTE: Whenever you modify this file you should run the command &quot;testparm&quot;
# to check that you have not many any basic syntactic errors.
#
#======================= Global Settings =====================================
[global]

# workgroup = NT-Domain-Name or Workgroup-Name
workgroup = xresearchlabs

# server string is the equivalent of the NT Description field
server string = SambaZeuz

# This option is important for security. It allows you to restrict
# connections to machines which are on your local network. The
# following example restricts access to two C class networks and
# the &quot;loopback&quot; interface. For more examples of the syntax see
# the smb.conf man page
; hosts allow = 192.168.1. 192.168.2. 127.
; hosts allow =
*{ below I edited the host allow section by adding the IPs that I want to welcome into my network; I also added them to my host.allow file}&quot;
* hosts allow = 127.0.0.1 192.168.1 128.170.135.115
* 205.229.253.151 66.75.185.204 24.130.248.108
* 66.75.189.98 172.156.251.166
# if you want to automatically load your printer list rather
# than setting them up individually then you'll need this
printcap name = /etc/printcap
load printers = yes

# It should not be necessary to spell out the print system type unless
# yours is non-standard. Currently supported print systems include:
# bsd, sysv, plp, lprng, aix, hpux, qnx
; printing = bsd

# Uncomment this if you want a guest account, you must add this to /etc/passwd
# otherwise the user &quot;nobody&quot; is used
; guest account = pcguest

# this tells Samba to use a separate log file for each machine
# that connects
log file = /var/log/samba/log.%m

# Put a capping on the size of the log files (in Kb).
max log size = 50

# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = user
# Use password server option only with security = server
; password server = <NT-Server-Name>

# Password Level allows matching of _n_ characters of the password for
# all combinations of upper and lower case.
password level = 8
username level = 8

# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read those documents
encrypt passwords = yes
smb passwd file = /etc/smbpasswd

# The following are needed to allow password changing from Windows to
# update the Linux sytsem password also.
# NOTE: Use these with 'encrypt passwords' and 'smb passwd file' above.
# NOTE2: You do NOT need these to allow workstations to change only
# the encrypted SMB passwords. They allow the Unix password
# to be kept in sync with the SMB password.
unix password sync = Yes
passwd program = /usr/bin/passwd %u
passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd*all*authentication*tokens*updated*successfully*

# Unix users can map to different SMB User names
username map = /etc/smbusers

# Using the following line enables you to customise your configuration
# on a per machine basis. The %m gets replaced with the netbios name
# of the machine that is connecting
; include = /etc/smb.conf.%m

# Most people will find that this option gives better performance.
# See speed.txt and the manual pages for details
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192

# Configure Samba to use multiple interfaces
# If you have multiple network interfaces then you must list them
# here. See the man page for details.
; interfaces = 192.168.12.2/24 192.168.13.2/24
*{ Very important below are the remote browse and remote annonce sections, these are my current settings}*
# Configure remote browse list synchronisation here
# request announcement to, or browse list sync from:
# a specific host or from / to a whole subnet (see below)
; remote browse sync = 192.168.3.25 192.168.5.255
remote browse sync = 192.168.1.22 66.75.185.204
remote browse sync = 192.168.1.22 128.170.135.115
remote browse sync = 192.168.1.22 24.130.248.108
remote browse sync = 192.168.1.22 66.75.189.98
remote browse sync = 192.168.1.22 172.156.251.166
# Cause this host to announce itself to local subnets here
; remote announce = 192.168.1.255 192.168.2.44
remote announce = 192.168.1. 128.170.135.115
remote announce = 192.168.1. 24.130.248.108
remote announce = 192.168.1. 66.75.189.98
remote announce = 192.168.1. 172.156.251.166
# Browser Control Options:
# set local master to no if you don't want Samba to become a master
# browser on your network. Otherwise the normal election rules apply
; local master = no
local master = yes
# OS Level determines the precedence of this server in master browser
# elections. The default value should be reasonable
; os level = 33
os level = 33
# Domain Master specifies Samba to be the Domain Master Browser. This
# allows Samba to collate browse lists between subnets. Don't use this
# if you already have a Windows NT domain controller doing this job
; domain master = yes
domain master = yes
# Preferred Master causes Samba to force a local browser election on startup
# and gives it a slightly higher chance of winning the election
; preferred master = yes
preferred master = yes
# Use only if you have an NT server on your network that has been
# configured at install time to be a primary domain controller.
; domain controller = <NT-Domain-Controller-SMBName>

# Enable this if you want Samba to be a domain logon server for
# Windows95 workstations.
domain logons = yes

# if you enable domain logons then you may want a per-machine or
# per user logon script
# run a specific logon batch file per workstation (machine)
; logon script = %m.bat
# run a specific logon batch file per username
; logon script = %U.bat

# Where to store roving profiles (only for Win95 and WinNT)
# %L substitutes for this servers netbios name, %U is username
# You must uncomment the [Profiles] share below
logon path = \\%L\Profiles\%U

# All NetBIOS names must be resolved to IP Addresses
# 'Name Resolve Order' allows the named resolution mechanism to be specified
# the default order is &quot;host lmhosts wins bcast&quot;. &quot;host&quot; means use the unix
# system gethostbyname() function call that will use either /etc/hosts OR
# DNS or NIS depending on the settings of /etc/host.config, /etc/nsswitch.conf
# and the /etc/resolv.conf file. &quot;host&quot; therefore is system configuration
# dependant. This parameter is most often of use to prevent DNS lookups
# in order to resolve NetBIOS names to IP Addresses. Use with care!
# The example below excludes use of name resolution for machines that are NOT
# on the local network segment
# - OR - are not deliberately to be known via lmhosts or via WINS.
; name resolve order = wins lmhosts bcast ; default
name resolve order = wins lmhosts bcast
# Windows Internet Name Serving Support Section:
# WINS Support - Tells the NMBD component of Samba to enable it's WINS Server
; wins support = yes
; wins support = yes
# WINS Server - Tells the NMBD components of Samba to be a WINS Client
# Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
; wins server = w.x.y.z
; wins server = 192.168.1.22
# WINS Proxy - Tells Samba to answer name resolution queries on
# behalf of a non WINS capable client, for this to work there must be
# at least one WINS Server on the network. The default is NO.
; wins proxy = yes

# DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
# via DNS nslookups. The built-in default for versions 1.9.17 is yes,
# this has been changed in version 1.9.18 to no.
dns proxy = no
unix password sync = yes
netbios name = SambaZeuz
encrypt passwords = yes
map to guest = never
password level = 0
null passwords = no
os level = 0
preferred master = no
domain master = yes
wins support = no
dead time = 0
debug level = 0
allow hosts = 127.0.0.1 192.168.1. 128.170.135. 66.75.179.115

# Case Preservation can be handy - system default is _no_
# NOTE: These can be set on a per share basis
; preserve case = no
; short preserve case = no
# Default case is normally upper case for all DOS files
default case = lower
# Be very careful with case sensitivity - it can break things!
case sensitive = no

#============================ Share Definitions ==============================
#[homes]
# comment = Home Directories
# browseable = yes
# writeable = yes
#adding
# path = /home/
# browseable = yes
# writable = yes
# public = yes
# only user = yes
# valid users =
# allow hosts = 127.0.0.1 192.168.1.
# user = specialkay luana
# max connections = 9999999999

# Un-comment the following and create the netlogon directory for Domain Logons
# [netlogon]
# comment = Network Logon Service
# path = /home/netlogon
# guest ok = yes
# writable = yes
# share modes = yes


# Un-comment the following to provide a specific roving profile share
# the default is to use the user's home directory
#[Profiles]
# path = /home/profiles
# browseable = yes
# guest ok = yes
;Adding more user profiles
#[agentx]
# path = /home/agentx
# browseable = no
# guest ok = no
#[luana]
# path = /home/luana
# browseable = yes
# guest ok = yes
#[specialkay]
# path = /home/specialkay
# browseable = yes
# guest ok = yes
#[inteli]
# path = /home/inteli
# browseable = yes
# guest ok = yes
# NOTE: If you have a BSD-style print system there is no need to
# specifically define each individual printer
#[printers]
# comment = All Printers
# path = /var/spool/samba
# browseable = no
# Set public = yes to allow user 'guest account' to print
# guest ok = no
# writable = no
# printable = yes
#[netlogon]
# path = /home/netlogon
# writeable = yes
# printable = yes
#[mp3s]
# path = /mnt/oseus
# browseable = yes
# public = yes
# guest only = no
# writable = no
# only user = no
# admin users = specialkay
#[dumps]
# comment = Media Downloads To OseusNFS
# path = /mnt/dumps
# browseable = yes
# writeable = yes
# only user = no

[luana]
comment = Bratt's Directory
path = /home/luana/HomeBase
valid users = luana
public = no
writeable = yes

[marky]
comment = Marky's Home
path = /home/marky/HomeBase
valid users = marky
public = no
writeable = no

[inteli]
comment = Inteli's Home
path = /home/inteli/HomeBase
valid users = inteli
public = no
writeable = yes


[ateli]
comment = Ateli's Home
path = /home/ateli/HomeBase
valid users = ateli
public = no
writeable = no
[daroyal]
comment = Laurence's Home
path = /home/daroyal/HomeBase
valid users = daroyal
public = no
writeable = no
[carnicle]
comment = Carnicle's Home
path = /home/carnicle/HomeBase
valid users = carnicle
public = no
writeable = no
[asdf]
comment = Lenny's Home
path = /home/asdf/HomeBase
valid users = asdf
public = no
writeable = no
[frnasa]
comment = Frank's Home
path = /home/frnasa/HomeBase
valid users = frnasa
public = no
writeable = no
[mikesd]
comment = Mike's Home
path = /home/mikessdca/HomeBase
valid users = mikessdca
public = no
writeable = no
[twinlinp]
comment = Pat's Home
path = /home/twinlinp/HomeBase
valid users = twinlinp
public = no
writeable = no
[jrc680]
comment = RJ's Home
path = /home/jrc680/HomeBase
valid users = jrc680
public = no
writeable = no
[gil007]
comment = Gil's Home
path = /home/gil007/HomeBase
valid users = gil007
public = no
writeable = no
[dare77]
comment = Darrel's Home
path = /home/dare77/HomeBase
valid users = dare77
public = no
writeable = no
[jimpcl]
comment = Jim's Home
path = /home/jimatpcl/HomeBase
valid users = jimatpcl
public = no
writeable = no
[brian]
comment = Sir Brian
path = /home/brian/HomeBase
valid users = brian
public = no
writeable = no
[noey]
comment = Solar Area Network
path = /home/noey/HomeBase
valid users = noey
public = no
writeable = no
[leoncion]
comment = Solar Tech
path = /home/leoncion/HomeBase
valid users = leoncion
public = no
writeable = no
[chris]
comment = SuperTech
path = /home/chris/HomeBase
valid users = chris
public = no
writeable = no
[jbod55]
comment = Tech Directory
path = /home/jbod55/HomeBase
valid users = jbod55
public = no
writeable = no
[extacy]
comment = Incoming Drug Traffic
path = /home/extacy/HomeBase
valid users = extacy
public = no
writeable = yes
[waskns]
comment = Winamp Skins from TontoFTP
path = /mnt/waskins
browseable = yes
writeable = no
only user = no
admin users = specialkay
[TontoFtp]
comment = TontoFTP
path = /mnt/tonto
writeable = no
only user = no
admin users = inteli
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

SamBones
  • Locked
  • Question
CentOS is Dead? 1
Replies
0
Views
235
SamBones
SamBones
gregor weertman
  • Locked
  • Question
set samba &quot;template shell&quot; dependent on group
Replies
0
Views
140
gregor weertman
gregor weertman
spamjim
  • Locked
  • Question
Sorting out NTFS filesystem issues
Replies
0
Views
239
spamjim
spamjim
kasperelectronics
  • Locked
  • Question
Desktop streaming from a server to low power front end device e.g. RasPi
Replies
0
Views
161
kasperelectronics
kasperelectronics
SamBones
  • Locked
  • Question
LINUX is Obsolete
Replies
6
Views
239
dik
dik

Part and Inventory Search

Sponsor

Back
Top