Iptables

[Diogene Laerce]

Hi,

I try to authorize the 192.168.0.2 host to connect to samba  but the
server host 192.168.0.1 won't let me with the following statement :

************************************************************************

iptables -A INPUT -i eth0 -p udp -s 192.168.0.2/32 -d 192.168.0.1
--dport 137 -j ACCEPT
iptables -A INPUT -i eth0 -p udp -s 192.168.0.2/32 -d 192.168.0.1
--dport 138 -j ACCEPT
iptables -A INPUT -i eth0 -m state --state NEW,ESTABLISHED -p tcp -s
192.168.0.2/32 -d 192.168.0.1 --dport 139 -j ACCEPT
iptables -A INPUT -i eth0 -m state --state NEW,ESTABLISHED -p tcp -s
192.168.0.2/32 -d 192.168.0.1 --dport 445 -j ACCEPT

************************************************************************

So I enabled the CIFS profile in UFW, which is more permissive and does
work (yes the whole SAMBA configuration is.. :) ). But I'd like to make
those iptables rules work as they are more efficient.

Any clue ?

Thanks
-- 
“One original thought is worth a thousand mindless quotings.”
“Le vrai n'est pas plus sûr que le probable.”

                                              Diogene Laerce

signature.asc
Description: OpenPGP digital signature