I am using firestarter to protect my lan. my firewall is the same machine that i use as a samba server. I haven't used any directives in the smb.conf file to stop samba listening on the external NIC as I thought my firewall would prevent it.
but I am finding various log entries about my server having browsing elections with windows servers on the net. they can't talk back to me as the firewall blocks the incoming messages but allows the outgoing.
Should I add the smb.conf directive to make samba only listen on my internal nic?
change these directives to something tighter:
or alter my firewall rules?
hosts allow = 192.168.1. 127.0.0.1
hosts deny = 0.0.0.0/0