[Bug 243809] New: Firewall and Windows Shares
https://bugzilla.novell.com/show_bug.cgi?id=243809 Summary: Firewall and Windows Shares Product: openSUSE 10.2 Version: Final Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: hlyon@infal.cl QAContact: jsrain@novell.com Its not possible to browse windows shares without manualy openning requiererd ports on the yast firewall settings. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 alberto.passalacqua@tin.it changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |alberto.passalacqua@tin.it ------- Comment #1 from alberto.passalacqua@tin.it 2007-02-08 14:18 MST ------- I confirm. It would be nice to have this solved for 10.3. A possible solution suggested in the chatroom was to set: FW_SERVICES_ACCEPT_EXT="0/0,tcp,1024:65535,137:139 0/0,udp,1024:65535,137:139" -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 mhorvath@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team- |lnussel@novell.com |screening@forge.provo.novell| |.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 lnussel@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |WONTFIX ------- Comment #2 from lnussel@novell.com 2007-02-09 05:32 MST ------- smb browsing requires broadcasts. Ie it's a service for trustworthy, internal networks. Set your network interface to internal. The suggested fix basically opens up your host to anyone. Not a good idea. Before doing that you could use ip_conntrack_netbios_ns instead. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 ------- Comment #3 from dmacvicar@novell.com 2007-02-09 05:46 MST ------- Ok, but what about laptops? That is valid when you use the traditional method for setting up an interface, but if you use networkmanager in a laptop probably sometimes you have a public ip an sometimes a private one. How is this handled? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 ------- Comment #4 from lnussel@novell.com 2007-02-09 05:54 MST ------- bad luck. You don't want smb to be open in a public place anyways. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 ------- Comment #5 from alberto.passalacqua@tin.it 2007-02-09 06:00 MST ------- Sorry but this _again_ (this problem afflicts users since 9.0, solved in 9.3, back again in 10.x) not an answer (or a disappointing one, your choice) to around 90% of the users, who usually have a single card and often uses a public IP. Considering that many users need samba also if they're in a public place, and that it's not a reasonable solution to manually configure the firewall everytime, a viable solution should be found. At least this is what users should expect from a Linux seller which does much of its marketing talking about interoperability. Regards -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 ------- Comment #6 from dmacvicar@novell.com 2007-02-09 06:02 MST ------- Then Networkmanager should handle the opening of the ports when it hotplugs a private network, and close them when you are hotpluging to a public ip. or? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809 ------- Comment #7 from dmacvicar@novell.com 2007-02-09 06:07 MST ------- well, you don't need to open any port, it is about enabling/disabling broadcasts. But it should be dynamic. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=243809#c8
Alberto Passalacqua
https://bugzilla.novell.com/show_bug.cgi?id=243809
User lnussel@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=243809#c9
Ludwig Nussel
https://bugzilla.novell.com/show_bug.cgi?id=243809
User alberto.passalacqua@tin.it added comment
https://bugzilla.novell.com/show_bug.cgi?id=243809#c10
--- Comment #10 from Alberto Passalacqua
participants (1)
-
bugzilla_noreply@novell.com