My SOLUTION for 'NETWORK NOT FOUND' issue (XP/2000-Linux)

1 view
Skip to first unread message

Richter

unread,
Jan 4, 2002, 9:44:14 PM1/4/02
to


Same as about 50% of the posters in this group I also experienced the
horrible 'network not found' error message when trying to access the
samba server from a windows XP (2000) machine.

I had the hosts visible in 'My Network', but when trying to open them
I got the dreaded message.

After experimenting for 3 nights I finally solved it.
This could be a possible solution for people using XP Pro (and maybe
also 2000) and Linux (I use kernel 2.4.10)

(I don't know if all information I will give is usefull or neccesary,
but with this set-up it works for me.)

My set-up:

Machine A - 192.168.0.1 - Linux (Suse)
Machine B - 192.168.0.2 - Win XP Pro
Machine C - 192.168.0.3 - Linux (Suse)
Machine D - 192.168.0.4 - Win 98SE

(C & D are not relevant in this example, so I will only use
A & B)

I use machine A (linux) as the router.
It has a cable-modem connection via ETH0 using pppoe.
All other machines are 'masqueraded' on machine A.
(Using "iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE")
------------------
All machines are connected to a 10/100 hub, leading to
Machine A on ETH1.
------------------
All 'hosts' files (Linux *and* XP) are complete, naming all hosts.
(To be sure, also note the hosts in lmhosts in
C:\WINDOWS\system32\drivers\etc)
------------------
* In linux 'hosts'looks like:

127.0.0.1 localhost
192.168.0.1 ordos.local ordos
192.168.0.2 fremen.local fremen
192.168.0.3 atreides.local atreides
192.168.0.4 harkonnen.local harkonnen
::1 localhost ipv6-localhost ipv6-loopback
fe00::0 ipv6-localnet
ff00::0 ipv6-mcastprefix
ff02::1 ipv6-allnodes
ff02::2 ipv6-allrouters
ff02::3 ipv6-allhosts

------------------
* In linux hosts.allow looks like:
ALL: 127.0.0.1
ALL: 192.168.0. (or whatever network you use)

------------------
* and hosts.deny looks like:
http-rman : ALL EXCEPT LOCAL

------------------
On the XP-machine (192.168.0.2) TCP-properties are:

Use the follwing IP address: 192.168.0.2 (or your machine's IP)
Subnet Mask: 255.255.255.0
Default Gateway: 192.168.0.1 (my Linux router)
Primary DNS: Your local or ISP's DNS #1 (I use my ISP's)
Secondary DNS: Your local or ISP's DNS #2

In 'Advanced':

Check 'Enbale NetBIOS over TCP/IP
No Wins-servers

--------------------
* Create user account + password in XP
* Set up *exactly the same* account + password in Linux *and* Samba

- In XP, goto Control Panel / User Accounts
- In linux use: useradd -d /home/your_name -s /bin/bash your_name
- In Samba use: smbpasswd -a your_name

---------------------

Now the tricky bit that did it for me.
When all hosts are pingable, show in 'My Network' and you still get
the 'network not found error' the problem probably can be found in
your firewall (iptables/ipchains) settings or in /etc/samba/smb.conf
(Suse) or in both.

I give you both, because by using these two configs it now works for
me:

SMB.CONF
---------------
[global]
workgroup = LOCAL (use the same workgroup as on XP machine!)
os level = 2
kernel oplocks = No

security = user
encrypt passwords = Yes
guest account = Nobody
map to guest = Bad User

password server = 192.168.0.2

printing = LPRNG
printcap name = /etc/printcap
load printers = Yes

socket options = SO_KEEPALIVE IPTOS_LOWDELAY TCP_NODELAY

interfaces = 192.168.0.1/24 (IP of 'inside' eth)

wins support = No

character set = ISO8859-15
client code page = 850

[homes]
comment = Home Directories
path = /home
read only = No
create mask = 0640
directory mask = 0750
browseable = No

[cdrom]
comment = Linux CD-ROM
path = /media/cdrom
locking = No

END
------------------

* Don't forget to (RE)START samba ('rcsmb restart/start' in Suse)
to activate the new smb.conf !

IPTABLES:
(See manual on how to add rules)
-------------------------------------
Chain INPUT (policy ACCEPT)
target prot opt source destination
devchain all -- anywhere anywhere

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain devchain (1 references)
target prot opt source destination
rulchain all -- anywhere anywhere

Chain maschain (0 references)
target prot opt source destination

Chain rulchain (1 references)
target prot opt source destination
DROP udp -- anywhere anywhere udp
dpt:sunrpc

DROP udp -- anywhere anywhere udp
dpt:7741

DROP udp -- anywhere anywhere udp
dpt:time

DROP udp -- anywhere anywhere udp
dpt:32784

DROP udp -- anywhere anywhere udp
dpt:netbios-dgm

DROP udp -- anywhere anywhere udp
dpt:netbios-dgm

DROP udp -- anywhere anywhere udp
dpt:netbios-ns

DROP udp -- anywhere anywhere udp
dpt:netbios-ns

DROP udp -- anywhere anywhere udp
dpt:ntalk

DROP udp -- anywhere anywhere udp
dpt:talk

ACCEPT udp -- sun4000.casema.net anywhere udp
spt:domain

ACCEPT udp -- ns1.casema.net anywhere udp
spt:domain

DROP icmp -- anywhere anywhere icmp
redirect

DROP udp -- anywhere anywhere

LOG tcp -- anywhere anywhere tcp
flags:SYN,RST,ACK/SYN LOG level warning

REJECT tcp -- anywhere anywhere tcp
flags:SYN,RST,ACK/SYN reject-with tcp-reset

### (Note: the two ACCEPTS are my two ISP's DNS servers)

----------------------------------------------------------------

Very handy was 'nmap' to see what ports are open and/or closed.

Please read the great manual by Mark W. on:
http://members.shaw.ca/markswebb/index.htm

Read that first!

If you have any questions, just mail me.
I'm not a real techie, but somehow I figured it out ;)


Richter.

Reply all
Reply to author
Forward
0 new messages