iptables module for smb browsing

Charles R. Anderson cra at WPI.EDU
Wed Sep 29 13:28:00 UTC 2004


On Wed, Sep 29, 2004 at 11:00:59AM +0200, Alexander Larsson wrote:
> In my quest to make SMB browsing work with the default firewall rules,
> thus fixing:
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=133478
> https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=113918
> 
> I have now written a kernel conntrack module (attached) that marks
> replies to netbios name requests as RELATED to the original connection.
> This means the default firewall rules will work when this module is
> loaded. I'm not actually an expert in netbios or firewall stuff, so I'd
> love if someone who knew this better took a look at it and made sure it
> looks ok.

Yay!  Thank you!  Does this work for other multi/broadcast protocols, 
or is it specific to netbios?  I think a generic solution would be 
nice.

I'll take a look and test this...




More information about the fedora-devel-list mailing list