Blocking netbios to the internet with iptables

john

Guest

Posts: n/a

01-03-2004, 08:00 PM

I'm considering the following rule:
## Drop Netbios traffic to the internet (eth1)
## Just ignore that 137 and 138 are udp and 139 is tcp.
iptables -t mangle -A POSTROUTING -p ALL -d 0/0 --dport 137:139 -o
eth1 -j DROP

It seems benefical to have just 1 rule as opposed to one for the OUTPUT
chain (because of Samba)
and one for FORWARD (because of Windows machines).

Is this save to do? Any caveats?

Thanks,
John

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are On Pingbacks are On Refbacks are Off Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Internet Blocking	KenP	Broadband Hardware	2	04-23-2008 11:55 PM
NetBIOS with NAT using iptables helper module	lrwood@gmail.com	Linux Networking	1	01-18-2006 02:38 PM
vpn setup, nearly there... client firewall blocking netbios names	Tim_Mac	Windows Networking	1	05-05-2005 02:55 PM
NetBIOS with NAT using iptables helper module	Lance	Linux Networking	0	11-22-2004 04:20 PM
Blocking long list of IPs in iptables?	Jem Berkes	Linux Networking	10	10-10-2003 07:22 PM