> You can stop a peer to peer , just block tcp and udp port's 137 - 139 . > > iptables -A INPUT -i eth0 -p udp --dport 137:139 -j DROP > iptables -A INPUT -i eth0 -p tcp --dport 137:139 -j DROP > > If your policy is accept then use the above But this blocks netbios incomming to the linux host, peers will still communicate.
BTW, it's UDP 137:138, and TCP 139. you can optimize a bit your rules. just a bit. :) Regards, Maciej Soltysiak
