Hi Christian,
Hi!
thanks! iptraf shows tcp traffic on ports 139 and 445. both are already open to the trusted net in the firewall. Have you seen any UDP connections too?
I've now tried to enter one specific IP address in FW_TRUSTED_NETS, rather than a block in the notation 222.222.222.0/25. With this changed setting, access works. So it seems that my FW_TRUSTED_NETS syntax was wrong after all. But what would be the right way to enter a whole block? *puhh* very strange... ok, start the firewall and have a look at the following iptables-chain:
iptables -L input_ext -n If your settings are correct, there should be a line like this: ACCEPT tcp -- 222.222.222.0/25 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpt:139 You can also try to enter temporary iptables commands (SuSEfirewall2 is running of course) iptables -I INPUT -s 222.222.222.0/25 -p tcp --dport 139 -j ACCEPT
Birgit
HTH, Christian -- Christian Eisendle mailto:nospam@eisendle.net