Tom's Hardware > Forum > General Networking > Firewall > configuring suse firewall to block outgoing SMB?

configuring suse firewall to block outgoing SMB?

Forum General Networking : Firewall - configuring suse firewall to block outgoing SMB?

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!
Ask the community Add a reply
Word :    Username :           
 
Anonymous   04-17-2004 at 09:17:47 AM

Archived from groups: alt.os.linux.suse,comp.security.firewalls,comp.os.linux.networking (More info?)

 

Sometimes I VPN to work, and my windows machines are hardwired to talk to
the WINS servers at work. When not connected via VPN, they still
try to send updates to the company WINS server, and these are leaking out
my SuSEFirewall2 machine.

I'd like to configure the firewall to block all outgoing packets on the public
interface directed to ports 135:139, without blocking traffic from the
firewall to the internal interface -- it has its own SMB exports and
needs to publish its own data locally.

Any ideas how to do this? I am an iptables n00b.

thanks,

-dB

Add a reply
Sponsored Links
Register or log in to remove.
Anonymous   04-17-2004 at 09:17:48 AM
- 0 +

Archived from groups: alt.os.linux.suse,comp.security.firewalls,comp.os.linux.networking (More info?)

 

David Brower wrote:

> Sometimes I VPN to work, and my windows machines are hardwired to talk to
> the WINS servers at work. When not connected via VPN, they still
> try to send updates to the company WINS server, and these are leaking out
> my SuSEFirewall2 machine.
>
> I'd like to configure the firewall to block all outgoing packets on the
> public interface directed to ports 135:139, without blocking traffic from
> the firewall to the internal interface -- it has its own SMB exports and
> needs to publish its own data locally.
>
> Any ideas how to do this? I am an iptables n00b.
>
> thanks,
>
> -dB

To block OUTGOING SMB? Two ways:
1) Uninstall Samba (this would fix the problem the easiest way possible)
2) as root: "iptables -A OUTPUT -p tcp --sport 137:139 -j DROP"
"iptables -A OUTPUT -p udp --sport 137:139 -j DROP"

--
Science is what happens when preconception meets verification.

Reply to Anonymous
Ask the community Add a reply
Tom's Hardware > Forum > General Networking > Firewall > configuring suse firewall to block outgoing SMB?
Go to:

There are 807 identified and unidentified users. To see the list of identified users, Click here.

Forum map
Bestofmedia Forum ©
2000-2009 Bestofmedia Group
Page generated in 0.181 seconds
Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel
Sponsored links
  • Ask the community now
  • Publish
Ad
Related Topics
See all relatives topics
They won a badge
Join us in greeting them