iptables module for smb browsing

Alexander Larsson alexl at redhat.com
Wed Sep 29 09:00:59 UTC 2004


In my quest to make SMB browsing work with the default firewall rules,
thus fixing:
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=133478
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=113918

I have now written a kernel conntrack module (attached) that marks
replies to netbios name requests as RELATED to the original connection.
This means the default firewall rules will work when this module is
loaded. I'm not actually an expert in netbios or firewall stuff, so I'd
love if someone who knew this better took a look at it and made sure it
looks ok.

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 Alexander Larsson                                            Red Hat, Inc 
                   alexl at redhat.com    alla at lysator.liu.se 
He's an impetuous crooked stage actor on a mission from God. She's a 
warm-hearted foul-mouthed opera singer from a different time and place. They 
fight crime! 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: ip_conntrack_netbios_ns.c
Type: text/x-csrc
Size: 1841 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-devel-list/attachments/20040929/67910653/attachment.bin>


More information about the fedora-devel-list mailing list