From owner-freebsd-net Thu Mar 8 6:22: 0 2001 Delivered-To: freebsd-net@freebsd.org Received: from mip.co.za (puck.mip.co.za [209.212.106.44]) by hub.freebsd.org (Postfix) with ESMTP id A4B9537B71A; Thu, 8 Mar 2001 06:21:35 -0800 (PST) (envelope-from patrick@mip.co.za) Received: from patrick (patrick.mip.co.za [10.3.13.181]) by mip.co.za (8.9.3/8.9.3) with SMTP id QAA90760; Thu, 8 Mar 2001 16:21:24 +0200 (SAST) (envelope-from patrick@mip.co.za) From: "Patrick O'Reilly" To: "FreeBSD Network List" , "FreeBSD IPFW List" Subject: RE: FW: MS Shares through IPFW Date: Thu, 8 Mar 2001 16:21:24 +0200 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0) X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2314.1300 Importance: Normal In-reply-to: <20010308042652.Q31752@elvis.mu.org> Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org FIXED !!! Thanks to you all (Bill, Blair and Johnny) for your help. It turns out the problem was not at the transport level at all (seriously red face now!) The login and password was the issue - Since the clients and server are not on the same windows NT domain, the NT server was validating the login against local users, not against users registered on the NT PDC. I have had a local user added to the NT server for the purpose of this connection, given the user access to the share AND the NTFS directories and files, and now it works just fine. PS: I have tightened the firewall rules to: > -------- > /sbin/ipfw -q add 00009 allow tcp from 10.5.5.0/24 to 10.3.3.240 139 > /sbin/ipfw -q add 00009 allow tcp from 10.3.3.240 139 to 10.5.5.0/24 > -------- and it works that way. This might help the next person trying to do the same thing... I'm still getting DHCP stuff floating about, but I'm sure that is another issue altogether... Thanks again, Patrick. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message