On Wed, Sep 29, 2004 at 11:00:59AM +0200, Alexander Larsson wrote:
In my quest to make SMB browsing work with the default firewall
rules,
thus fixing:
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=133478
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=113918
I have now written a kernel conntrack module (attached) that marks
replies to netbios name requests as RELATED to the original connection.
This means the default firewall rules will work when this module is
loaded. I'm not actually an expert in netbios or firewall stuff, so I'd
love if someone who knew this better took a look at it and made sure it
looks ok.
Yay! Thank you! Does this work for other multi/broadcast protocols,
or is it specific to netbios? I think a generic solution would be
nice.
I'll take a look and test this...