From owner-freebsd-stable Wed Mar 27 3:24:16 2002 Delivered-To: freebsd-stable@freebsd.org Received: from sv07e.atm-tzs.kmjeuro.com (sv07e.atm-tzs.kmjeuro.com [193.81.94.207]) by hub.freebsd.org (Postfix) with ESMTP id 5293137B419 for ; Wed, 27 Mar 2002 03:24:11 -0800 (PST) Received: (from root@localhost) by sv07e.atm-tzs.kmjeuro.com (8.11.5/8.11.4) id g2RBO9u50366 for stable@freebsd.org; Wed, 27 Mar 2002 12:24:09 +0100 (CET) (envelope-from k.joch@kmjeuro.com) Received: from kmjeuro.com (adsl.sbg.kmjeuro.com [193.154.189.16]) (authenticated) by sv07e.atm-tzs.kmjeuro.com (8.11.5/8.11.4) with ESMTP id g2RBO1b50167 for ; Wed, 27 Mar 2002 12:24:01 +0100 (CET) (envelope-from k.joch@kmjeuro.com) Message-ID: <3CA1ABF2.5000908@kmjeuro.com> Date: Wed, 27 Mar 2002 12:24:34 +0100 From: "Karl M. Joch" User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:0.9.6) Gecko/20011205 X-Accept-Language: en-us MIME-Version: 1.0 To: stable@freebsd.org Subject: FreeBSD4.5->IPSEC<-FreeBSD 4.5 Samba 2.2.3a Subnet Browsing. Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit X--virus-scanner: scanned for Virus and dangerous attachments on sv07e.atm-tzs.kmjeuro.com (System Setup/Maintainance: http://www.ctseuro.com/) Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Hi, i have a main net with a samba 2.2.3.a server and a subnet which is connected via ipsec to the main net. |FBSD 4.5 Firewall|----------ipsec--------|FBSD.4.5 Firewall| | | | | | | ---- main net 192.168.M.x ------ ------ subnet 192.168.S.x--- | | | | | | |FBSD4.5/Samba2.2.3a/WorkGroup MAIN| |FBSD4.5/Samba 2.2.3a| |WORKGROUP: SUBNET | everythink works great in the local subnets. furthermore access from M->S and S->M is working fine. but there is need that the MAIN net sees the workstations and the servers in the SUBNET. the SUBNET should not see the MAIN PCs in the browsing list. both samba servers are domain master, local master and wins server. ods level is at 65 to make sure they are the local masters. no Win server included. i set the debug level to 3 to see whats going on. the main server has the remote browse sync set to 192.168.S.255 (tried with the wins servers ip too). the subnet server has the entry remote announce = 192.168.M.x (also tried with the wins servers ip too). within 5 hours there is nothing in the browse list of the MAIN net, furthermore there is not one entry in the log files that MAIN tries to collect the SUBNETS browselist and not even an entry in the SUBNETS nmbd.log which says that the subnets server tries to announce the subnets workgroup to the main net. i searched the archives and rechecked everything: - valid guest account - firewall rules for tcp/udp 137,138,139 - smb.conf parameters it is not possible to use one of the samba servers as main wins server, because then the subnet would see the main net in the browse list too. furthermore when the line would be cutted in case of technical errors then the subnet would loos the wins server. this istallation will get additional 5 subnets where different combinations of seeing/not seeing subnets are neccecary. so i have to go with remote announce/remote browse sync. any clue what i miss? many thanks. -- -- Best regards / Mit freundlichen Gruessen, Karl M. Joch To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message