[Samba] Samba + Two NICs
Hello, I am using samba-3.0.24-11.fc6 for my workgroup with user security level simple setup and samba works fine; I have two network interfaces eth0(internal LAN) & eth1(external), the problem I face is whenever my internet disconnects and link on eth1 goes down my samba also hangs and windows clients are unable to access samba shares (probably they could not find the samba server), I thought this is due to smbd and nmbd listening on both interfaces eth0 and eth1, so I tried setting following parameters in smb.conf: hosts allow = 192.168.10.0/24 127.0.0.1 local master = yes os level = 65 interfaces = eth0 lo (so that samba will not listen on eth1) bind interfaces only =yes but my problem still continues inspite of above settings, but if I execute "ifdown eth1" command samba restores its state immediately and now all clients can access the shares normally. What parameters I need to set in order to operate samba normally on interface eth0 only and ignoring the status of eth1? Is this a firewall issue? (I have setup nat; see below my iptables conf) Please help. Netstat command output: [r...@matrix ~]# netstat -tapn | grep smbd tcp0 0 192.168.10.254:139 0.0.0.0:* LISTEN 3199/smbd tcp0 0 127.0.0.1:139 0.0.0.0:* LISTEN 3199/smbd tcp0 0 192.168.10.254:445 0.0.0.0:* LISTEN 3199/smbd tcp0 0 127.0.0.1:445 0.0.0.0:* LISTEN 3199/smbd tcp0 12 192.168.10.254:445 192.168.10.251:19464 ESTABLISHED 9517/smbd tcp0 0 192.168.10.254:445 192.168.10.102:1046 ESTABLISHED 9580/smbd [r...@matrix ~]# netstat -apn | grep nmbd udp0 0 192.168.10.254:137 0.0.0.0:* 3203/nmbd udp0 0 0.0.0.0:137 0.0.0.0:* 3203/nmbd udp0 0 192.168.10.254:138 0.0.0.0:* 3203/nmbd udp0 0 0.0.0.0:138 0.0.0.0:* 3203/nmbd unix 2 [ ] DGRAM20850 3203/nmbd Iptables configuration: # Generated by iptables-save v1.4.1.1 on Sat Dec 27 11:26:07 2008 *nat :PREROUTING ACCEPT [19:1945] :POSTROUTING ACCEPT [0:0] :OUTPUT ACCEPT [4:290] -A PREROUTING -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128 -A POSTROUTING -o eth1 -j MASQUERADE #-A POSTROUTING -o eth1 -j SNAT --to-source 203.129.225.54 #-A POSTROUTING -o eth1 -j SNAT --to-source 192.168.1.5 #-A POSTROUTING -o eth1 -j SNAT --to-source 59.90.140.72 COMMIT # Completed on Sat Dec 27 11:26:07 2008 # Generated by iptables-save v1.4.1.1 on Sat Dec 27 11:26:07 2008 *filter :INPUT DROP [79:8157] :FORWARD DROP [0:0] :OUTPUT DROP [12:1482] :okay - [0:0] -A INPUT -i eth0 -p udp -m udp --sport 67:68 --dport 67:68 -j ACCEPT -A INPUT -s 192.168.10.0/24 -i eth0 -j ACCEPT -A INPUT -s 127.0.0.1/32 -i lo -j ACCEPT -A INPUT -s 192.168.10.254/32 -i lo -j ACCEPT -A INPUT -s 203.129.225.55/32 -i lo -j ACCEPT -A INPUT -s 59.90.140.72/32 -i lo -j ACCEPT -A INPUT -s 192.168.1.5/32 -i lo -j ACCEPT -A INPUT -d 192.168.10.255/32 -i eth0 -j ACCEPT -A INPUT -d 203.129.225.55/32 -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -d 59.90.140.72/32 -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -d 192.168.1.5/32 -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -i eth1 -p tcp -m tcp --dport 21 -j okay -A INPUT -i eth1 -p tcp -m tcp --dport 20 -j okay -A INPUT -i eth1 -p tcp -m tcp --dport 22 -j okay -A INPUT -i eth1 -p tcp -m tcp --dport 80 -j okay -A INPUT -p UDP -i eth0 --destination-port 53 -j ACCEPT -A INPUT -p UDP -i eth1 --destination-port 53 -j ACCEPT -A INPUT -i eth1 -p icmp -m icmp --icmp-type 8 -j ACCEPT -A INPUT -i eth1 -p icmp -m icmp --icmp-type 11 -j ACCEPT -A FORWARD -i eth0 -j ACCEPT -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT -A OUTPUT -s 127.0.0.1/32 -j ACCEPT -A OUTPUT -s 192.168.10.254/32 -j ACCEPT -A OUTPUT -s 203.129.225.55/32 -j ACCEPT -A OUTPUT -s 59.90.140.72/32 -j ACCEPT -A OUTPUT -s 192.168.1.5/32 -j ACCEPT -A okay -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j ACCEPT -A okay -p tcp -m state --state RELATED,ESTABLISHED -j ACCEPT -A okay -p tcp -j DROP COMMIT # Completed on Sat Dec 27 11:26:07 2008 # Generated by webmin *mangle :FORWARD ACCEPT [0:0] :INPUT ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :PREROUTING ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] COMMIT # Completed Regards, Rahul. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba & AutoCAd 2005
>> Patrik Dufresne wrote: >>> Hi, >>> >>> I have some problem with a network that use Samba as the main >>> FileServer. All client are Windows XP and are identical in almost >>> every point of view. >>> >>> User complain of several crash of AutoCad that happen during the day >>> for no special reason. It usually happen when the user execute a >>> command. >>> >>> The problem it's self it's not really important, I just want to know >>> if any body complain about similar problem with AutoCad+Samba. If >>> it's not the case, I will not care about the server and take a >>> further look to other network component. >>> >>> Thanks for your help >>> >>>Patrik Dufresne > > > Rahul Tidke wrote: >> Hello, >> I have same setup here; all the CAD standards and profiles are >> loaded in to AutoCAD using SAMBA shares, CAD project files are also >> accessed from SAMBA shares. This generates very heavy traffic over >> network and this is I/O bound operation; you should have sufficient >> RAM at both server and client side. Your AutoCAD should be update with >> all service packs and CAD fixes released by Autodesk. The problem you >> are talking about should be related to AutoCAD or possibly some >> network issues and not with SAMBA; as this happens when user executes >> certain command. >> Make sure that AutoCAD is configured properly in case you are using >> some CAD standards/customizations and file paths should not be missing. >> >> Thank you. >> Rahul. >> >> Yan Seiner wrote: Interesting. I had a complaint today about AutoCAD being slow to access files. Once in a while users see very slow access when accessing files from the server. Apparently this is particular to AutoCAD. I am waiting on more information, so that's all I know at this point. --Yan I went through number of problems while setting up CAD softwares and Samba file server, we use softwares like 1) Graphisoft ArchiCAD which uses a concept called Teamwork (Multiple people working on same project file) 2) Autodesk Revit which uses concept of Central file (This is also shared by multiple peoples with restricted access to certain part of file; after finishing the work everyone saves back to central file and changes are reflected to central file). 3) Autodesk Architecture, this uses number of different client wise CAD standards, libraries , profiles which is all loaded in to AutoCAD project file from SAMBA share and this project files is accessed from different SAMBA share ( A common share is created for CAD standards,CAD Libraries, customization files), in addition this project file has multiple external references (called xrefs) which is also loaded from common SAMBA share. What I am trying to mention is a single file has multiple objects loaded from different SAMBA shares and a user saves the data (file on which he is working) back to server frequently (say after every 2-3 minutes); plus these software have "Auto save" feature which also saves the data back to server after particular time interval. So if your network disconnects (even if for fraction of seconds) in between; all the files become read only and sometime this affects the teamwork file or central file (file may get corrupt)! My question to SAMBA developers is; whether accessing files this way from different SAMBA shares in to a single CAD project file and how SAMBA serves files are inter related in any way?? What kind of SAMBA configuration one should have in above cases? Thanks Rahul. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba & AutoCAd 2005
Hello, I have same setup here; all the CAD standards and profiles are loaded in to AutoCAD using SAMBA shares, CAD project files are also accessed from SAMBA shares. This generates very heavy traffic over network and this is I/O bound operation; you should have sufficient RAM at both server and client side. Your AutoCAD should be update with all service packs and CAD fixes released by Autodesk. The problem you are talking about should be related to AutoCAD or possibly some network issues and not with SAMBA; as this happens when user executes certain command. Make sure that AutoCAD is configured properly in case you are using some CAD standards/customizations and file paths should not be missing. Thank you. Rahul. Patrik Dufresne wrote: Hi, I have some problem with a network that use Samba as the main FileServer. All client are Windows XP and are identical in almost every point of view. User complain of several crash of AutoCad that happen during the day for no special reason. It usually happen when the user execute a command. The problem it's self it's not really important, I just want to know if any body complain about similar problem with AutoCad+Samba. If it's not the case, I will not care about the server and take a further look to other network component. Thanks for your help Patrik Dufresne -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] local master browser
Hello! Can anybody tell me what is the meaning of following logs (/var/log/messages). Feb 28 09:16:10 espl nmbd[3086]: process_local_master_announce: Server VINAY at IP 192.168.10.50 is announcing itself as a local master browser for workgroup EXCELIZE and we think we are master. Forcing election. Feb 28 09:16:10 espl nmbd[3086]: Samba name server ESPL has stopped being a local master browser for workgroup EXCELIZE on subnet 192.168.10.254 Feb 28 09:16:27 espl nmbd[3086]: Samba name server ESPL is now a local master browser for workgroup EXCELIZE on subnet 192.168.10.254 Regards, Rahul Tidke. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
