Hello list, (schnipp) The problem: A couple of Macintoshs want to communicate with a Linux-PC with iptables installed, they need to pop/send their mail (thats no prob) and need to post some files on the Linux-System, but not with appletalk (afpovertcp), but with tcp. So the questions are: 1. How can I enable the ddp-protocol within my iptables? ´iptables ... -p ddp ...´ doesn´t work. 2. Which ports need to be opened to let macs and linux communicate with each other? Thank you in advance
Hello,
You don't mention whether or not you've configured Netatalk. In order for Macintosh computers using Appletalk to see a Linux server, you need to compile and configure Netatalk on the Linux machine. You also need to configure your kernel to have built in Appletalk support. DDP, to the best of my knowledge runs completely indepedently of TCP/IP and thus will not be affected by iptables.
Netatalk can be found on Sourceforge. It is fairly easy to configure if you just take the default configuration files and tweak them. Netatalk is also compiled with the standard
./configure make su -c 'make install'
method.
Bill Miller jrmiller@cbnlottery.com
Oh, yes, sorry, I forgot. Yes, netatalk is running. Yes, every Apple I want to can access any share on the Linuxbox, until I turn on the iptables-rules, which are: - all iptables-policies: DROP - accept d-ports 22,25,110,548 (INPUT) for -s 192.168.0.0/24 - accept s-ports 22,25,110,548 (output) for -d ^^^^^^^^^^^^^^ ... thats it ... and with ´iptables -L´ I get the correct tables-report. But the point is, as I mentioned, when I start my small iptables-script, the Macs ( < V9.2 btw) can´t access the Linuxbox by using tcp. Unfortunately, neither the scanlogd nor the ordinary firewall-logs (haven´t been able to include them yet) report, which ports has been tried to connect to. I already have tried to open the ports 137-139 for the Apple I am working with, but thats not the solution. Thank you Enrico --