Web lists-archives.com

Re: [Samba] Samba and UFW




Hello,

 

Thanks for your responses. I  have attached a file containing the responses
to ufw.log, syslog, ufw status numbered and ufw status verbose (Best use
Word/Wordpad to open it). The OS is Linux Mint 19.1.

Samba version 4.7.6 - Ubuntu. Samba runs on boot up. I connect using the
file explorer Go -> Network menu selections. Hope this information will be
of help.

 

Regards,

Marty

martin@martin-RB042AV-ABA-a1410y:~$ sudo smbstatus
[sudo] password for martin:              

Samba version 4.7.6-Ubuntu
PID     Username     Group        Machine                                   Protocol Version  Encryption           Signing              
----------------------------------------------------------------------------------------------------------------------------------------

Service      pid     Machine       Connected at                     Encryption   Signing     
---------------------------------------------------------------------------------------------

No locked files

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

/var/log/ufw.log

Jan 27 15:11:09 martin-RB042AV-ABA-a1410y kernel: [  887.241685] [UFW BLOCK] IN=enp2s5 OUT= MAC=00:19:21:a2:11:5e:74:27:ea:ab:1e:e0:08:00 SRC=192.168.254.15 DST=192.168.254.39 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=10646 PROTO=UDP SPT=137 DPT=52944 LEN=70 
Jan 27 15:11:21 martin-RB042AV-ABA-a1410y kernel: [  899.315443] [UFW BLOCK] IN=enp2s5 OUT= MAC=00:19:21:a2:11:5e:74:27:ea:ab:1e:e0:08:00 SRC=192.168.254.15 DST=192.168.254.39 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=10652 PROTO=UDP SPT=137 DPT=58971 LEN=70 
Jan 27 15:11:22 martin-RB042AV-ABA-a1410y kernel: [  900.317937] [UFW BLOCK] IN=enp2s5 OUT= MAC=00:19:21:a2:11:5e:74:27:ea:ab:1e:e0:08:00 SRC=192.168.254.15 DST=192.168.254.39 LEN=90 TOS=0x00 PREC=0x00 TTL=128 ID=10653 PROTO=UDP SPT=137 DPT=50482 LEN=70 
Jan 28 10:05:57 martin-RB042AV-ABA-a1410y kernel: [   39.099157] [UFW BLOCK] IN=enp2s5 OUT= MAC= SRC=fe80:0000:0000:0000:368d:74dd:abec:eba0 DST=ff02:0000:0000:0000:0000:0000:0000:0001 LEN=64 TC=0 HOPLIMIT=1 FLOWLBL=849527 PROTO=UDP SPT=8612 DPT=8612 LEN=24 
Jan 28 10:05:57 martin-RB042AV-ABA-a1410y kernel: [   39.099223] [UFW BLOCK] IN=enp2s5 OUT= MAC= SRC=fe80:0000:0000:0000:368d:74dd:abec:eba0 DST=ff02:0000:0000:0000:0000:0000:0000:0001 LEN=64 TC=0 HOPLIMIT=1 FLOWLBL=871986 PROTO=UDP SPT=8612 DPT=8610 LEN=24 
Jan 28 10:05:57 martin-RB042AV-ABA-a1410y kernel: [   39.109547] [UFW BLOCK] IN=enp2s5 OUT= MAC= SRC=fe80:0000:0000:0000:368d:74dd:abec:eba0 DST=ff02:0000:0000:0000:0000:0000:0000:0001 LEN=64 TC=0 HOPLIMIT=1 FLOWLBL=849527 PROTO=UDP SPT=8612 DPT=8612 LEN=24 
Jan 28 10:05:57 martin-RB042AV-ABA-a1410y kernel: [   39.109600] [UFW BLOCK] IN=enp2s5 OUT= MAC= SRC=fe80:0000:0000:0000:368d:74dd:abec:eba0 DST=ff02:0000:0000:0000:0000:0000:0000:0001 LEN=64 TC=0 HOPLIMIT=1 FLOWLBL=871986 PROTO=UDP SPT=8612 DPT=8610 LEN=24 

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

 uew status numbered

martin@martin-RB042AV-ABA-a1410y:~$ sudo ufw status numbered
Status: active

     To                         Action      From
     --                         ------      ----
[ 1] Samba                      ALLOW IN    Anywhere                  
[ 2] Samba (v6)                 ALLOW IN    Anywhere (v6)             

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXx

ufw status verbose

martin@martin-RB042AV-ABA-a1410y:~$ sudo ufw status verbose
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip

To                         Action      From
--                         ------      ----
137,138/udp (Samba)        ALLOW IN    Anywhere                  
139,445/tcp (Samba)        ALLOW IN    Anywhere                  
137,138/udp (Samba (v6))   ALLOW IN    Anywhere (v6)             
139,445/tcp (Samba (v6))   ALLOW IN    Anywhere (v6)


XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

/var/log/syslog

Jan 28 10:10:54 martin-RB042AV-ABA-a1410y rsyslogd:  [origin software="rsyslogd" swVersion="8.32.0" x-pid="648" x-info="http://www.rsyslog.com";] rsyslogd was HUPed
Jan 28 10:11:21 martin-RB042AV-ABA-a1410y NetworkManager[678]: <info>  [1548688280.8236] connectivity: (enp2s5) timed out
Jan 28 10:11:22 martin-RB042AV-ABA-a1410y NetworkManager[678]: <info>  [1548688282.6515] manager: NetworkManager state is now CONNECTED_SITE
Jan 28 10:11:22 martin-RB042AV-ABA-a1410y dbus-daemon[651]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm-dispatcher.service' requested by ':1.11' (uid=0 pid=678 comm="/usr/sbin/NetworkManager --no-daemon " label="unconfined")
Jan 28 10:11:23 martin-RB042AV-ABA-a1410y systemd[1]: Starting Network Manager Script Dispatcher Service...
Jan 28 10:11:23 martin-RB042AV-ABA-a1410y dbus-daemon[651]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher'
Jan 28 10:11:23 martin-RB042AV-ABA-a1410y systemd[1]: Started Network Manager Script Dispatcher Service.
Jan 28 10:11:23 martin-RB042AV-ABA-a1410y nm-dispatcher: req:1 'connectivity-change': new request (2 scripts)
Jan 28 10:11:23 martin-RB042AV-ABA-a1410y nm-dispatcher: req:1 'connectivity-change': start running ordered scripts...
Jan 28 10:11:29 martin-RB042AV-ABA-a1410y anacron[689]: Job `cron.daily' terminated
Jan 28 10:11:29 martin-RB042AV-ABA-a1410y anacron[689]: Normal exit (1 job run)
Jan 28 10:15:01 martin-RB042AV-ABA-a1410y ntpd[833]: 91.189.91.157 local addr 192.168.254.39 -> <null>
Jan 28 10:15:58 martin-RB042AV-ABA-a1410y NetworkManager[678]: <info>  [1548688558.5786] manager: NetworkManager state is now CONNECTED_GLOBAL
Jan 28 10:15:58 martin-RB042AV-ABA-a1410y systemd[1]: Starting Network Manager Script Dispatcher Service...
Jan 28 10:15:58 martin-RB042AV-ABA-a1410y dbus-daemon[651]: [system] Activating via systemd: service name='org.freedesktop.nm_dispatcher' unit='dbus-org.freedesktop.nm-dispatcher.service' requested by ':1.11' (uid=0 pid=678 comm="/usr/sbin/NetworkManager --no-daemon " label="unconfined")
Jan 28 10:15:58 martin-RB042AV-ABA-a1410y dbus-daemon[651]: [system] Successfully activated service 'org.freedesktop.nm_dispatcher'
Jan 28 10:15:58 martin-RB042AV-ABA-a1410y systemd[1]: Started Network Manager Script Dispatcher Service.
Jan 28 10:15:58 martin-RB042AV-ABA-a1410y nm-dispatcher: req:1 'connectivity-change': new request (2 scripts)
Jan 28 10:15:58 martin-RB042AV-ABA-a1410y nm-dispatcher: req:1 'connectivity-change': start running ordered scripts...
Jan 28 10:17:01 martin-RB042AV-ABA-a1410y CRON[2736]: (root) CMD (   cd / && run-parts --report /etc/cron.hourly)
Jan 28 10:17:15 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] AppArmor D-Bus mediation is enabled
Jan 28 10:17:40 martin-RB042AV-ABA-a1410y dbus-daemon[651]: [system] Activating via systemd: service name='org.freedesktop.PackageKit' unit='packagekit.service' requested by ':1.65' (uid=0 pid=3320 comm="/usr/bin/gdbus call --system --dest org.freedeskto" label="unconfined")
Jan 28 10:17:40 martin-RB042AV-ABA-a1410y systemd[1]: Starting PackageKit Daemon...
Jan 28 10:17:40 martin-RB042AV-ABA-a1410y PackageKit: daemon start
Jan 28 10:17:41 martin-RB042AV-ABA-a1410y dbus-daemon[651]: [system] Successfully activated service 'org.freedesktop.PackageKit'
Jan 28 10:17:41 martin-RB042AV-ABA-a1410y systemd[1]: Started PackageKit Daemon.
Jan 28 10:19:10 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Activating service name='org.freedesktop.portal.Desktop' requested by ':1.1' (uid=0 pid=3390 comm="gedit /var/log/syslog " label="unconfined")
Jan 28 10:19:10 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Activating service name='org.freedesktop.portal.Documents' requested by ':1.2' (uid=0 pid=3395 comm="/usr/lib/xdg-desktop-portal/xdg-desktop-portal " label="unconfined")
Jan 28 10:19:10 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Activating service name='org.freedesktop.impl.portal.PermissionStore' requested by ':1.3' (uid=0 pid=3400 comm="/usr/lib/xdg-desktop-portal/xdg-document-portal " label="unconfined")
Jan 28 10:19:10 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Successfully activated service 'org.freedesktop.impl.portal.PermissionStore'
Jan 28 10:19:10 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Successfully activated service 'org.freedesktop.portal.Documents'
Jan 28 10:19:11 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Activating service name='org.freedesktop.impl.portal.desktop.gtk' requested by ':1.2' (uid=0 pid=3395 comm="/usr/lib/xdg-desktop-portal/xdg-desktop-portal " label="unconfined")
Jan 28 10:19:11 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Successfully activated service 'org.freedesktop.impl.portal.desktop.gtk'
Jan 28 10:19:11 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Successfully activated service 'org.freedesktop.portal.Desktop'
Jan 28 10:19:12 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Activating service name='ca.desrt.dconf' requested by ':1.1' (uid=0 pid=3390 comm="gedit /var/log/syslog " label="unconfined")
Jan 28 10:19:12 martin-RB042AV-ABA-a1410y dbus-daemon[2751]: [session uid=0 pid=2748] Successfully activated service 'ca.desrt.dconf'             

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba