Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-user

From: Dale <dalek@××××××××××.net>
To: gentoo-user@l.g.o
Subject: Re: [gentoo-user] Firewalling and Sambra printer.
Date: Sun, 22 Oct 2006 23:03:18
Message-Id: 453BF78E.7050207@exceedtech.net
In Reply to: [gentoo-user] Firewalling and Sambra printer. by Pupeno
1 Pupeno wrote:
2 > Hello,
3 > I have two computers (that are involved in this problem), phoenix is my Gentoo
4 > workstation and desktop-1 is someone else's Windows box. Someone else happens
5 > to have a printer and I don't, so, from time to time I use his printer. The
6 > printer is shared, obviously, thru SMB (it's a windows box). I configured
7 > CUPS to connect to it (I just used the KDE Kcontrol to configure it).
8 > My problem is that when I bring up my firewall (a firewall using iptables on
9 > phoenix, just protecting phoenix) printing stops working. In fact, all access
10 > to desxtop-1 thru smb stops working.
11 > The firewall is very simple, a simple stateful all-incomming-closed firewall:
12 >
13 > # iptables -vL
14 > Chain INPUT (policy DROP 35510 packets, 16M bytes)
15 > pkts bytes target prot opt in out source
16 > destination
17 > 329K 558M ACCEPT all -- lo any anywhere anywhere
18 > 36M 54G ACCEPT all -- any any anywhere anywhere
19 > state RELATED,ESTABLISHED
20 > 3 228 ACCEPT icmp -- any any anywhere anywhere
21 > icmp echo-request limit: avg 30/min burst 5
22 > 120 7057 ACCEPT icmp -- any any anywhere anywhere
23 > 1 60 ACCEPT tcp -- any any anywhere anywhere
24 > tcp dpt:ssh
25 >
26 > Chain FORWARD (policy DROP 0 packets, 0 bytes)
27 > pkts bytes target prot opt in out source
28 > destination
29 >
30 > Chain OUTPUT (policy ACCEPT 21M packets, 3426M bytes)
31 > pkts bytes target prot opt in out source
32 > destination
33 > phoenix ~ #
34 >
35 > Do you know why after bringing up this firewall I can't use the printer
36 > anymore and/or how to solve it ?
37 >
38 > Thank you.
39
40
41 Well I had a similiar issue a while back. This is what I did and it worked:
42
43
44 > iptables -I INPUT 2 -p udp --dport 445 --source 192.168.0.0/24 -j ACCEPT
45 > iptables -I INPUT 2 -p tcp --dport 445 --source 192.168.0.0/24 -j ACCEPT
46 > iptables -I INPUT 2 -p udp --dport 138 --source 192.168.0.0/24 -j ACCEPT
47 > iptables -I INPUT 2 -p tcp --dport 138 --source 192.168.0.0/24 -j ACCEPT
48 > iptables -I INPUT 2 -p udp --dport 139 --source 192.168.0.0/24 -j ACCEPT
49 > iptables -I INPUT 2 -p tcp --dport 139 --source 192.168.0.0/24 -j ACCEPT
50 > iptables -I INPUT 2 -p tcp --dport 137 --source 192.168.100.0/24 -j ACCEPT
51 > iptables -I INPUT 2 -p udp --dport 137 --source 192.168.100.0/24 -j ACCEPT
52
53 I got that help from here:
54
55 http://forums.gentoo.org/viewtopic-p-3371796.html#3371796
56
57 Maybe that will help you some. Oh, may need to change the ip numbers
58 where needed.
59
60 Dale
61
62 :-) :-) :-)
63 --
64 gentoo-user@g.o mailing list

Replies

Subject Author
Re: [gentoo-user] Firewalling and Sambra printer. Pupeno <pupeno@××××××.com>
Re: [gentoo-user] Firewalling and Sambra printer. Jason Booth <jbooth@××××××××××××××××.net>
Report Message
Find on MARC Find on Google Groups