Smb firewall ports used

I am very new to the Mac world, I have recently bought a duo core mini. I am having tremendous problems getting it to work with the rest of my Windows XP based network.
If I turn off the firewall on the PC, using smb and the ip address for the PC I can gain access to the shares on the PC hard drives. If I turn on the firewall again I can continue to access the share that I have logged onto, but no others, I get an error 36. If I unmount the share, I can no longer get back into it. I have set the firewall up with smb enabled and ports 135-139, 445 open for tcp and udp.
Does smb use a different port during the connection and mount routine does anyone know ? Am I missing something very basic ?
David

Hello,
we updated from 11.3.1 to 11.3.2
Now i can not run the command chkconfig -a novell-proxydhcp to set the proxydhcp to autorun because i get...

Similar Messages

  • DNS for internal network and Firewall ports?

    Hello,
    I don't know were to begin, so I guess I'll start with my setup.
    I have Mac OS X server 10.5.7 running DNS, Firewall, Mail, iChat, RADIUS, VPN, SMB. Behind an Airport Base Station in DMZ.
    My DSN setup is just for the server and local clients. I'm also setup to forward my ISP DNS.
    My question is do I need to open any ports in the firewall. I currently have my local subnet 172.16.4.x to allow all. The "Any" subnet to allow DNS outbound. Is this correct or am I creating a security risk?
    I dont want the public to be able to use my DNS server. (I would like to ONLY allow my local network, and VPN users.)
    Thanks!
    Message was edited by: Robert LaRocca

    I always recommend going with a hardware device (including the base station) over IPFW when running a server.
    The main reason is that when you're running behind a NAT device (such as the AirPort Base Station), ALL incoming traffic is blocked unless you specifically enabled it via port forwarding. A positive security model.
    In contrast, Mac OS X Server will open firewall ports based on the services you're running, without regard to whether that service should be publicly accessible or not.
    You then have to go through the motions of securing each service to either block external traffic at the service level (e.g. by telling the application what addresses it can listen to), or at the network level (by configuring the firewall to block external access). This is a bad security model since each service is public by default and you have to go out of your way to secure it.
    Also bear in mind that you might not think this is a problem today since you can just configure IPFW and be done, but what about next week? or next month? or next year when you add another service. Will you remember to reconfigure the firewall to secure it then?

  • How do I open a port using "a shell" (Terminal)?

    There is a question hereabouts that deals with opening a TCP port using "a shell." The response says that this is possible but does not say how. Specifically I need to know this for Yosemite, most recent iteration. The port would be 8101, for Tivo Desktop. Yes I know that TD is no longer supported but I have it and it seems to be working ok
    Thanks, Bob V

    Did you try just adding TD to the Firewall Options list and setting it to allow incoming connections.
    Do you often connect to a public WiFi Network such that you need the Firewall running?

  • RMI server behind firewall--must use host as name, not IP

    Server is running behind a firewall, which runs such that any machine behind the firewall cannot use the external IP to get back to itself.
    That is:
    - outside IP = 192.171.20.5 (port forwards 1099 to 192.168.1.5:1099)
    - inside IP = 192.168.1.5 (rmi server listens on 1099)
    from the machine inside (192.168.1.5), it is IMPOSSIBLE to create a socket to [outside ip](192.171.20.5), port 1099, and expect it to get back to the machine inside--the firewall prohibits this.
    I -can- use name-based lookups, such that I can edit the hosts file on the inside box to route (myhost.com to 192.168.1.5). So, if everyone's DNS resolves myhost.com -> 192.171.20.5, then clients anywhere can go to myhost.com:1099 and will be redirected to my internal machine (192.168.1.5:1099).
    The problem with this is that the names get translated to IPs and sent back to the client.
    Is there a way to keep the names as names, so that both client (using external real-world DNS entries) and server (using local hosts file) can both resolve to the proper IP addresses?
    I'm starting server, as follows:
    java -Djava.rmi.server.codebase=http://myhost.com/rmi/ -Djava.security.policy=/policypath/policy -Djava.rmi.server.hostname=myhost.com mypkg.myclass
    The client connects and gets this message (from a connection exception):
    java.rmi.ConnectException: Connection refused to host: 192.168.1.5;

    Server is running behind a firewall, which runs such
    that any machine behind the firewall cannot use the
    external IP to get back to itself.I dont really understand this statement.. Machines behind the firewall referring to the external ip would be going to the gateway, not themselves.. Or do you have an internal AND external ip on the machines behind the firewall? Or are we referring to the gateway machine as an internal machine as well as external?
    That is:
    - outside IP = 192.171.20.5 (port forwards 1099 to
    192.168.1.5:1099)
    - inside IP = 192.168.1.5 (rmi server listens on
    1099)looks good, what kinda OS/firewall? If we're talking linux/ipchains (or iptables) with ip masquerading, I may be of some use to you...
    from the machine inside (192.168.1.5), it is
    IMPOSSIBLE to create a socket to [outside
    ip](192.171.20.5), port 1099, and expect it to get
    back to the machine inside--the firewall prohibits
    this.If you're on the internal network, why can't you just go for the internal ip addr? If I'm understanding correctly, you want internal dns requests for myhost.com to resolve to 192.168.1.5, and external dns requests to resolve to 192.171.20.5? That should't be a problem...
    I -can- use name-based lookups, such that I can edit
    the hosts file on the inside box to route (myhost.com
    to 192.168.1.5). So, if everyone's DNS resolves
    myhost.com -> 192.171.20.5, then clients anywhere can
    go to myhost.com:1099 and will be redirected to my
    internal machine (192.168.1.5:1099).the hosts file has nothing to do with routing, it's simply a dns-type thing... If your dns is giving external users a 192.168 address as the ip for myhost.com, they will never get to it. 192.168 is not routable on the internet, i think most inet routes will drop packets from 192.168.x.x or 10.x.x.x.
    Is there a way to keep the names as names, so that
    both client (using external real-world DNS entries)
    and server (using local hosts file) can both resolve
    to the proper IP addresses?As long as your dns is working correctly, java doesn't care if you use ips or host names.. Hostnames are preferable, so when you change your network around, you wont affect your rmi server.
    I'm starting server, as follows:
    java -Djava.rmi.server.codebase=http://myhost.com/rmi/
    -Djava.security.policy=/policypath/policy
    -Djava.rmi.server.hostname=myhost.com mypkg.myclass
    The client connects and gets this message (from a
    connection exception):
    java.rmi.ConnectException: Connection refused to host:
    192.168.1.5;Is your server compiled with the 192.171 ip? That's not gonna work, you have to use the same IP the server is running on. I'm still not clear on your network layout, is 192.171.20.5 and 192.168.1.5 the 2 gateway ip's, or is 192.168.1.5 a physically different machine? I'd be willing to bet that your server is compiled with the external address, and if that's not the same machine, then there's no chance of that working....
    There's more than port forwarding going on.. IIRC, java rmi keeps track of its own ip's.. A client request to an external ip will not connect to a server running on the internal ip, even if you forward the port, rmi itself doesn't recognize the internal as the ip it's trying to get to (even if it is true), so it bombs out.. This can happen if you run the rmi server on a gateway, and compile the server with the external ip, and try to connect to the internal ip.. If you want external machines to connect, you MUST run the server on an external ip.
    Give a little more info, we'll getcha running... I'm also assuming you have full control of your network (ie, firewall/dns)
    doug

  • What are policy firewall port should be permit between meetingplace web external and internal

    I deploy MeetingPlace Web Conferencing with SMA.
    1. What are policy firewall port should be permit between meetingplace web external and internal (web external on DMZ zone and web internal on internal zone)?
    2. Synchronized Globally Unique Identifiers (GUIDs) between internal and external Web Servers used firewall port?

    Hi,
    List of Firewall pots to be opened are mentioned in following document, you can refer your deployment type and open ports as mentioned.
    http://docwiki.cisco.com/wiki/Cisco_Unified_MeetingPlace_Release_8.5_--_System_Requirements_for_Audio-Only_Deployments
    http://docwiki.cisco.com/wiki/Cisco_Unified_MeetingPlace_Release_8.5_--_System_Requirements_for_WebEx-Scheduling_Deployments
    http://docwiki.cisco.com/wiki/Cisco_Unified_MeetingPlace_Release_8.5_--_System_Requirements_for_MeetingPlace-Scheduling_Deployments
    Regards
    Ronak patel

  • Firewall Port Site Definition Globally Changing

    We are using Dreamwaver MX 2004 Educational Edition.
    We have several Managed Sites configured for secure FTP on
    firewall port 21. We have added a new site but it uses port 1021.
    When we configured that site we were able to connect with no
    probelm. The issue is we discoverd that for our existing defined
    Manage Sites the firewall port automatically changed to 1021. When
    we reset the port back to 21, all the other defined Managed sites
    changed to port 21, inculding the ones defned for port 1021. We
    tested this out on two different machines and the results were the
    same.
    Is this that way it is, or a know issue, a "feature"?
    Thanks for any information.

    Hello Preston Holder. Welcome to the Apple Discussions!
    As you are already aware RDC clients listen on port 3389 by default.
    To change the listening port will require making a Registry mod. This would be typically used if you needed to access more than one computer remotely. (ref: Microsoft Knowledge Base article 306759)
    Locate the appropriate Registry key using Regedit.exe:
    HKEYLOCALMACHINE\System\CurrentControlSet\Control\TerminalServer\WinStations\RDP-Tcp\Port Number
    From the Edit menu, click Modify and then click Decimal. Choose a new port number. In general, choosing a number between 49152 and 65535 will avoid conflict with any other apps on your system, but you could theoretically use any port on the system. Once you set the port number you also need to configure your router to pass the specified port to your computer.
    To access your computer remotely, instead of typing just the IP address, you need to type the IP address followed by the port number like this: 192.168.1.1:50001

  • All ports used by oracle

    Dear all,
    Currently we are using oracle 10g R2 , Developer suite 10g on windows server 2003 32 bit.
    we are upgrading to oracle database 11g R2 , Fusion Middleware on windows server 2012 64 bit.
    our network administrator ask me to provide all the ports used by oracle so that we would include it in the firewall policy.
    how to find those ports?
    Regards.

    EdStevens wrote:
    Justin Mungal wrote:
    saratpvv wrote:
    This file contains port list
    $ORACLE_HOME/install/portlist.iniHey... neat... I didn't know about that.
    But I would still go with netstat just to be sure, as previously suggested. The portlist.ini file listed the EM and EM Agent ports, but didn't list the listener port... tsk tsk portlist.ini!Because you are expecting portlist.ini to be used for something that it is NOT used for ...
    I can't find the documentation now, but it seems I remember reading that oracle uses its portlist.ini file to track what ports it has assigned to various (but not all) of its services. But it is NOT used to actually configure those services. THAT is done with various .config or .xml files. See http://docs.oracle.com/cd/E11882_01/install.112/e24321/app_port.htm#sthref841 for some additional insight.
    Roger. I haven't actually used it, as I had only just heard about it. Thank you though.

  • IP ports used by Zfd3.2

    Hi,
    Does someone know is the TID10054960 "up to date" or is there any
    other
    document about ports used by zen?
    Our pc:s have firewalls installed and when I conffigure access rules according that tid things does not work correctly. If I check firewall
    log it got some other inbound UDP ports like: 2930, 3014, 3016 and the
    responder port is other than inbound, hmm..
    Enviroment: Nw5.1 SP5, Zfd3.2 SP1
    Thanks,
    Jouko

    Jouko,
    It appears that in the past few days you have not received a response
    to your posting. That concerns us, and has triggered this automated
    reply.
    Has your problem been resolved? If not, you might try one of the
    following options:
    - Check the knowledgebase and SolutionNet databases at
    http://support.novell.com
    - Check all of the other support tools and options available at
    http://support.novell.com
    - You could also try posting your message again. Make sure it is
    posted in the correct newsgroup.
    If this is a reply to a duplicate posting, please ignore and accept
    our apologies and rest assured we will issue a stern reprimand to our
    posting bot.
    Your Novell Support Connection Forums Team
    http://support.novell.com/forums/

  • CSA : what are the port used

    Hi,
    I'm trying a lab about CSA.
    In the LAN, there is policy with the firewall.
    So I want to know what are the port used bye the CSA MC and agent. (From MC to Agent and from Agent to MC.
    Is there any link to more document ?
    Best regards

    It's in the readme file on the downloads page.
    3. Port Usage Information
    This section explains which ports are used for communication by the product.
    Web Browser to CSA MC communication uses port 443 (https).
    Cisco Security Agent to Management Center communication occurs over port 5401
    Port 443 is used by default if port 5401 is not available.
    Port 80 is also required for agent kit caching.
    Analysis Jobs to CSA MC communication occurs over port 5401.
    Tom

  • Help with firewall port opening

    I'm a newbie at this, so please be patient. And my Time Capsule is less than a week old, so I'm still in the learning stages.
    I purchased an iPod Touch and one of the programs from the App Store--Pocketpedia--requires certain ports to be open in order to sync with my Mac pedia programs.
    I went into the Time Capsule>Advanced settings to try to open the appropriate 2 ports (one for the Powerbook and one for the Touch). I'm obviously doing something wrong. That wouldn't be heard since all of the terminology is foreign to me. I know that I need to open the two TCP ports.
    I clicked on the + to add a new service/port. I wasn't sure if I needed the numbers in Public TCP ports or private, so entered them in both with the numbers separated by commas.
    I thought that this would be "personal file sharing" so I tried to choose that under "Service". However, when I did that it said "A pulic TCP port number conflicts with a file sharing port on the base station. Disable file sharing or choose a different port number." Actually, once I choose "personal file sharing", it autofills in port 548 into the two TCP numbers. That's one that's opened within System Preferences. So it actually won't let me change that number at all. When I try to, it services menu defaults back to "choose a service".
    Needless to say, I'm very confused. I did go ahead and create a service with the two port #'s and without designating it a specific "service", but that doesn't seem to fix my problem with allowing the Touch to sync with my Powerbook.
    Any help would be much appreciated.

    With port mapping (forwarding) you "open" ports on the router's firewall in order to allow Internet traffic to reach a host device on your local area network (LAN). In this case your iPod Touch and PowerBook. However, you can only map the same port(s) to only one device. For example, you cannot map port 548 to both the Touch AND the PowerBook, only one or the other.
    The typical port mapping setup requires two basic steps:
    1. Assign either a static IP address or reserve a DHCP-assigned IP address to the host device.
    2. Map the appropriate port(s) on the router to this host device.
    The following is a more detailed list of steps ...
    To setup port mapping on the Time Capsule (TC), either connect to the TC's wireless network or temporarily connect directly, using an Ethernet cable, to one of the LAN port of the TC, and then use the AirPort Utility, in Manual Setup, to make these settings:
    1. Reserve a DHCP-provided IP address for the host device.
    Internet > DHCP tab
    o On the DHCP tab, click the "+" (Add) button to enter DHCP Reservations.
    o Description: <enter the desired description of the host device>
    o Reserve address by: MAC Address
    o Click Continue.
    o MAC Address: <enter the MAC (what Apple calls Ethernet ID if you are using wired or AirPort ID if wireless) hardware address of the host computer>
    o IPv4 Address: <enter the desired IP address>
    o Click Done.
    2. Setup Port Mapping on the AEBSn.
    Advanced > Port Mapping tab
    o Click the "+" (Add) button
    o Service: <choose the appropriate service from the Service pop-up menu>
    o Public UDP Port(s): <enter the appropriate UDP port values>
    o Public TCP Port(s): <enter the appropriate TCP port values>
    o Private IP Address: <enter the IP address of the host server>
    o Private UDP Port(s): <enter the same as Public UDP Ports or your choice>
    o Private TCP Port(s): <enter the same as Public TCP Ports or your choice>
    o Click "Continue"
    (ref: "Well Known" TCP and UDP ports used by Apple software products)

  • Apple TV not responding, check firewall port 3689

    Hi,
    I have this problem: "Apple TV not responding" with my PC wired to the router (Thomson Speedtouch 780i WL). I have read all the topics on this issue and tried everything: no success! With my XP laptop I can make a wireless connection and everything works fine. But not with the PC where I have all my music and photo archives on.
    Now I have a clean installed Vista and the problem remains the same. How is this possible?
    - the firewall port 3689 is open
    - i have rebooted everyting
    - i have made a new connection with the apple tv
    - apple tv software is updated
    I want to get this thing working. Could you please help me?
    Thanks, Sliek.

    The problem is not with the router nor the firewall. And with you having the issue on a PC and I having it on a Mac, this rules out the OS. That leaves a networking problem in either iTunes or the AppleTV. Or most likely a dropped packet of information between the two.
    Using NetBarrier I have watched the interaction between my Mac and the AppleTV. The sync occurs in three separate phases. The first phase initiates communications via port 3689 and a few high order ports (49xxx - 6xxxx). After this is finished about a dozen ports are opened by the AppleTV (all high order) for a couple of minutes. When these ports close and after a substantial wait, the AppleTV opens a whole s**t-load of ports (well over 200) and the actual sync occurs. It is this third phase that fails when I fail the sync. Or iTunes gets stuck waiting for a response from the AppleTV. I think that the AppleTV is dropping the ball and failing to respond properly.

  • Cisco Clean Access Update Website and Firewall Port Required

    Hi,
    I was wondering if anyone may know the website the clean access manager would be using to upate as well as the firewall port required. This is due to a firewall in place. Based on some reading, not sure if it uses other website besides the following http://www.perfigo.com/clean_machine_1/version-se.txt on port 80.
    Thanks.

    Hi,
    For CAM checks and rules update, that's the only site required.
    HTH,
    Faisal
    If you find this post helpful, please rate so others can find the answer easily

  • Terminal Services licensing firewall ports

    I have been searching the internet for an informative network\firewall drawing for the Terminal Services Licensing traffic when it comes to firewall ports requirements etc 
    Does someone have a detailed description or a (visio) drawing showing the ports required for WTS Licensing?
    We have the following Citrix based Terminal Server environment:
    - Windows 2008 R2 running XenApp6
    - Clients come from internal (LAN) and external connections (Citrix Access Gateway)
    - There is a firewall between the Citrix XenApp WTS farm and the MS Terminal Services Licensing server (Win 2008 R2)
    Can someone explain how the TSCAL\RDCAL "traffic" flows and the ports required from A-Z ?
    /Tord Bergset

    I believe the correct random ports used for for Windows Server 2008 are 49152-65535, not 1024-65535
    I am looking for a visio or something showing this...
    For Citrix solutions one have no problem finding network drawing showing firewall ports etc, but fro MS WTS licensing I jsut cannot find anything showing ports required etc
    Lot of designd docs\drawings regarding RDP traffic etc, but not anything for the RDCAL\TSCAL licensing traffic
    Scenario below:
    Need all WTS Licensing ports listed for the solution to work for external and internal clients
    External clients   using 2 factor auth
    Firewall
    Citrix Web Interface
    Server
    Firewall
    Citrix Licensing server
    Firewall
    Citrix WTS
    Farm
    Internal Clients
    Citrix Secure Gatway
    MS Terminal server Licensing server
    /Tord Bergset

  • TCP Ports used by SAPGUI

    Dear,
    I am trying to configure access to our SAP ECC6 system on our firewall.
    What are the TCP ports used by SAPGUI?
    As far as I can tell with netstat it uses these:
    sapgw89  3389/tcp
    sapdp02  3202/tcp
    I understand that sapdp02 indicates system 02,  what does sapgw89 stand for?
    Are there any other ports necessary than these two?
    Thank you,
    Pieterjan

    > What are the TCP ports used by SAPGUI?
    >
    > As far as I can tell with netstat it uses these:
    > sapgw89  3389/tcp
    > sapdp02  3202/tcp
    >
    > I understand that sapdp02 indicates system 02,  what does sapgw89 stand for?
    Is a gateway to a system with number 89.
    Basically you need ports 3200-3299 and 3300-3399 or a subselection of these depending on your systemnumber(s).

  • Opening Firewall Port 5353 solves problems?!

    I found this by Google:
    If you have tried to operate AirTunes with an Airport Express on a Windows XP PC with the firewall (or a third-party firewall) enabled, then you will realise you have problems.
    Rather than disable the firewall, you can just open port 5353 and all will work fine.
    Having said that if you have router with NAT and DHCP this acts as a hardware firewall and computers on your internal network do not need software firewalls. Though some people like them for security and to stop unauthorised (ie spyware) outgoing connections.

    I thought I recognised my own writing...
    Opening port 5353 in the Windows XP Firewall to enable an XP PC with SP1 to configure the Airport Express and use AirTunes
    http://www.ifelix.co.uk/tech/2005.html
    Principles are virtually the same for XP SP2
    "Well Known" TCP and UDP Ports Used By Apple Software Products
    http://docs.info.apple.com/article.html?artnum=106439

Maybe you are looking for