informatica:linux:samba
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
informatica:linux:samba [2011/03/15 20:26] – 95.20.4.199 | informatica:linux:samba [2018/01/05 15:50] (current) – javi | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== samba ====== | + | * Funciona |
- | samba smb nmbd | + | smbclient // |
+ | Enter XXX_informes' | ||
- | Servidor de archivos e impresoras para clientes windows | + | * Funciona |
- | ===== Instalación ===== | + | sudo mount -t cifs --verbose // |
+ | Password for XXX_informes@// | ||
+ | |||
+ | * NO Funciona | ||
- | | + | /etc/cifs_credentials |
- | + | ||
- | Contestar las opciones marcadas a: | + | |
- | + | ||
- | * Grupo de trabajo | + | |
- | * Algo relacionado con servidor DHCP | + | |
- | + | ||
- | + | ||
- | ===== Creación de usuarios ===== | + | |
- | + | ||
- | 1. Creamos un usuario, que creo que tiene que existir en el sistema: | + | |
- | + | ||
- | sudo smbpasswd -a mi_usuario | + | |
- | + | ||
- | 2. Introducir 2 veces la contraseña | + | |
- | + | ||
- | + | ||
- | + | ||
- | ===== Compartir directorio ===== | + | |
- | + | ||
- | En este ejemplo vamos a hacer accesible el directorio '/ | + | |
- | + | ||
- | 1. Renombrar el archivo de configuración por defecto de samba: | + | |
- | + | ||
- | sudo mv /etc/samba/ | + | |
- | + | ||
- | 2. Crear uno limpio: | + | |
- | + | ||
- | sudo vim / | + | |
- | + | ||
- | Con el siguiente contenido: | + | |
< | < | ||
- | #======================= Global Settings ======================= | + | user=XXX_informes |
- | + | pass=watheverñasda | |
- | [global] | + | |
- | + | ||
- | # Change this to the workgroup/ | + | |
- | | + | |
- | + | ||
- | # server string is the equivalent of the NT Description field | + | |
- | | + | |
- | + | ||
- | # This will prevent nmbd to search for NetBIOS names through DNS. | + | |
- | dns proxy = no | + | |
- | + | ||
- | # This tells Samba to use a separate log file for each machine | + | |
- | # that connects | + | |
- | log file = / | + | |
- | + | ||
- | # Cap the size of the individual log files (in KiB). | + | |
- | max log size = 1000 | + | |
- | + | ||
- | # We want Samba to log a minimum amount of information to syslog. Everything | + | |
- | # should go to / | + | |
- | # through syslog you should set the following parameter to something higher. | + | |
- | | + | |
- | + | ||
- | # Do something sensible when Samba crashes: mail the admin a backtrace | + | |
- | panic action = / | + | |
- | + | ||
- | # You may wish to use password encryption. | + | |
- | # ' | + | |
- | | + | |
- | + | ||
- | # If you are using encrypted passwords, Samba will need to know what | + | |
- | # password database type you are using. | + | |
- | | + | |
- | + | ||
- | obey pam restrictions = yes | + | |
- | + | ||
- | # This boolean parameter controls whether Samba attempts to sync the Unix | + | |
- | # password with the SMB password when the encrypted SMB password in the | + | |
- | # passdb is changed. | + | |
- | unix password sync = yes | + | |
- | + | ||
- | # For Unix password sync to work on a Debian GNU/Linux system, the following | + | |
- | # parameters must be set (thanks to Ian Kahan << | + | |
- | # sending the correct chat script for the passwd program in Debian Sarge). | + | |
- | | + | |
- | | + | |
- | + | ||
- | # This boolean controls whether PAM will be used for password changes | + | |
- | # when requested by an SMB client instead of the program listed in | + | |
- | # ' | + | |
- | pam password change = yes | + | |
- | + | ||
- | [homes] | + | |
- | | + | |
- | | + | |
- | + | ||
- | # By default, the home directories are exported read-only. Change the | + | |
- | # next parameter to ' | + | |
- | read only = yes | + | |
- | + | ||
- | # File creation mask is set to 0700 for security reasons. If you want to | + | |
- | # create files with group=rw permissions, | + | |
- | | + | |
- | + | ||
- | # Directory creation mask is set to 0700 for security reasons. If you want to | + | |
- | # create dirs. with group=rw permissions, | + | |
- | | + | |
- | + | ||
- | # By default, \\server\username shares can be connected to by anyone | + | |
- | # with access to the samba server. | + | |
- | # The following parameter makes sure that only " | + | |
- | # to \\server\username | + | |
- | # This might need tweaking when using external authentication schemes | + | |
- | valid users = %S | + | |
- | + | ||
- | [public] | + | |
- | + | ||
- | comment = Programas | + | |
- | browseable = yes | + | |
- | path = / | + | |
- | valid users = mi_usuario | + | |
- | read only = no | + | |
</ | </ | ||
- | 3. Grabar y salir | + | |
- | + | ||
- | 4. (Desde cliente windows) Botón derecho sobre 'Mi pc'/' | + | |
- | + | ||
- | 5. (Desde cliente windows) Introducir: ' | + | |
- | + | ||
- | 192.168.1.2\pulbic | + | |
- | + | ||
- | 6. (Desde cliente windows) Introducir usuario y contraseña de usuario de sistema ' | + | |
- | + | ||
- | Se debería poder ver el directorio compartido. | + | |
- | + | ||
- | ===== Reiniciar servicio ===== | + | |
- | + | ||
- | | + | |
- | + | ||
- | ===== Reglas para cortafuegos ===== | + | |
- | + | ||
- | < | + | |
- | iptables -A INPUT -p udp -m udp --dport 137 -j ACCEPT | + | |
- | iptables -A INPUT -p udp -m udp --dport 138 -j ACCEPT | + | |
- | iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 139 -j ACCEPT | + | |
- | iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 445 -j ACCEPT | + | |
- | </ | + | |
- | + | ||
- | ===== Acceso desde linux ===== | + | |
- | + | ||
- | * Montar unidad: | + | |
- | + | ||
- | mount.cifs //< | + | |
- | + | ||
- | * Desde fstab | + | |
- | + | ||
- | 1) (Todo como root) Crear un archivo con las credenciales de samba: | + | |
- | + | ||
- | nano / | + | |
- | + | ||
- | Con el siguiente contenido: | + | |
- | + | ||
- | < | + | |
- | username=< | + | |
- | password=< | + | |
- | </ | + | |
- | 2) Anyadir la siguiente linea a /etc/fstab: | + | // |
- | //< |
informatica/linux/samba.txt · Last modified: 2018/01/05 15:50 by javi