Solved

timeout

Posted on 2001-06-07
4
328 Views
Last Modified: 2010-04-20
i'm using redhat 7, and ipchains for the firewall,
i open all connection to outside
and allow all connection from other network(202.???.???.???) to inside (192.168.12.0/24)

INPUT         - ACCEPT
OUTPUT        - ACCEPT
FORWARD       - MASQ
From inside(192.168.12.0/24) to outside allow all
From other public 202.???.???.0/24 to inside allow all

all the connection is ok, but i always got problem with
mapping,
if i map a drive to other network (202.???.???.???) from the inside network (192.168.12.0/24) after sometime it will give a timeout, but then if you click again on the drive... it will be ok again...

i don't why this happen (the timeout)... can i set no timeout.. so the mapped drive will always connected?

thanks
0
Comment
Question by:ichen
  • 3
4 Comments
 
LVL 12

Accepted Solution

by:
j2 earned 100 total points
ID: 6166869
Your default policy for forwarding is MASQ. You cannot masquerade SMB traffic without getting the error you mention. You must create rules which opens (atleast) port 135-139 between the two nets WITHOUT masquerading (which most likely will break something else) But that is the breaks :)
0
 
LVL 1

Author Comment

by:ichen
ID: 6167079
create rules which opens port 135-139 without masquerading??
what do you mean by that?
ipchains -A forward -s 192?????? -d 203?????? 135:139 (without -j MASQ? is it??)
0
 
LVL 12

Expert Comment

by:j2
ID: 6167240
-A forward -s 192.168??? -d 203??? -p TCP --destination-port 135:139 -j ACCEPT and that has to come before the masquerade for the same network. And since you are using "dark" IP's (the 192.168 net) this probably will not wor, but it is the only way to get a reliable SMB connection. You also of cource need bidirectional routing between the networks.
0
 
LVL 12

Expert Comment

by:j2
ID: 6167243
oh, you need to add -b (bidirectional) to that rule aswell.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Join & Write a Comment

Network Interface Card (NIC) bonding, also known as link aggregation, NIC teaming and trunking, is an important concept to understand and implement in any environment where high availability is of concern. Using this feature, a server administrator …
How many times have you wanted to quickly do the same thing to a list but found yourself typing it again and again? I first figured out a small time saver with the up arrow to recall the last command but that can only get you so far if you have a bi…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now