Restrict Linux users from accessing the networked machines

[dew]

HELP ME !!!

I have a network of XP & Linux machines. From my Linux machines I do not want to access any networked pc - be it LINUX or windows.
I have removed samba configuration tool but still it when I click on network servers- it shows me the names of all the windows pc.
Please tell me how to restrict users of LINUX to access other machines in network

HELP !!!! Its urgent.

[tranin]

It shows the names, but can you actually access them? I have my linux computer networked with a Win XP machine, and when i saw my windows machine in the list, I thought it might be accessable, but when I tried to go in there, access was denied....just a thought.

[sarumont]

You can either take samba support out of your kernel (if it's just samba shares you want), or you can block access on an IP basis. You could also block just the ports, too (samba, nfs, etc.)...this would probably be easier to do than blocking each IP.

Code:

/sbin/iptables -A OUTPUT -d <IP> -j DROP

*or*

Code:

/sbin/iptables -A OUTPUT --dport <portnum> -j DROP

[dew]

dear sarumont

As you have told
Code:
/sbin/iptables -A OUTPUT -d <IP> -j DROP


*or*

Code:
/sbin/iptables -A OUTPUT --dport <portnum> -j DROP



If I do so , can my LINUX machines still be able to browse internet ? Because I want them to browse internet. How do I get the port number ?

Another thing is required - I want that from the LINUX machines they should not be able to access the local intranet address ie 192.168.0.100 . How can I do so ?

Please get back.
URGENT !!!
THNAKS ....

[tranin]

I do believe you can just type the following and it will block access to your LAN:

iptables -A OUTPUT -d 192.168.0.0/255.255.255.0 -j DROP

Should block anything going out from your computer to that subnet