> -----Original Message-----
> From: v934h [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, September 09, 2000 10:02 PM
> To: firewalls; Ronneil Camara
> Subject: RE: a bit off topic
>
>
> WFS requires:
> port 135 tcp or udp (make sure tcp/netbios is binded in NT)
> 137 udp
> 138 udp
> 139 tcp
I have added a rule which allows these ports, but still no luck.
>
> You can do a keep state on the tcp's (w/IPFilter), but the
> udp's have to be
> bidirectionally open. You want to limit the domains that can
> connect to
> netbios/loc-srv since these are known to have exploits, with no fix
> forthcoming.
>
> If you want to see what's happening, check out your logs.
> Log all blocks, and
I have enabled all logs on block but I am not seeing any protocol related to
microsoft networking that is being rejected with "tail -f
/var/log/messages".
> see what's happening. If you want to know if it's the
> firewall at all, turn
> off all blocks and see if it works, then work your way
> backwards. (Although
> logs often point directly to the problem)
I will try these.
>
> Regards
> Brian
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
