Bug #40572: Allow Samba to also listen on loopback when specifying a Bind IP - FreeNAS - iXsystems & FreeNAS Redmine

Bug #40572

Allow Samba to also listen on loopback when specifying a Bind IP

Added by John Hixson almost 3 years ago. Updated almost 3 years ago.

Status:

Done

Priority:

No priority

Assignee:

John Hixson

Category:

Target version:

11.1-U6

Seen in:

11.1

Severity:

New

Reason for Closing:

Reason for Blocked:

Needs QA:

Needs Doc:

Needs Merging:

Needs Automation:

Support Suite Ticket:

n/a

Hardware Configuration:

|NIC | Interface Name | DHCP | Media Status | IPv4 Addresses | IPv6 Addresses | Auto configure IPv6| Options|
|lagg0|lagg0|false|Active|||false||
|vlan3|Servidores|false|Active|10.0.3.20/24||false||
|vlan8|SAN|false|Active|10.0.8.23/24||false||

ChangeLog Required:

Description

We are using FreeNAS with multimple intefaces (2), and due to security issues, I only want Samba to listen on 1 of the IPs/Interfaces.

When Bind IP Addresses: option is selected, samba is only configured on this interface:

root@fuen-dc-1:~ # grep interfaces /usr/local/etc/smb4.conf
    bind interfaces only = yes
    interfaces = 10.0.3.20
root@fuen-dc-1:~ #

But per samba recommendation a loopback (127.0.0.1) interface must always be included, as lack of this can cause some issues to internal scripts and other samba utilities. And Loopback is not available in the list of interfaces/IPs to choose from.

As a workaround, I've set this options through Auxiliary parameters:, but Loopback should always be active, as per samba team recommendation.

BindLocalhost-2018-08-15.png (9.04 KB) BindLocalhost-2018-08-15.png

Michael Reynolds, 08/15/2018 12:19 PM

Related issues

Associated revisions

Revision 6aa2965b (diff)
Added by John Hixson almost 3 years ago

Allow binding to loopback address Ticket: #27948 (cherry picked from commit b1493fd7c8bbee28d89f8472d65aedc08a042ffd) (11.1-stable ticket) Ticket: #40572

History

#1 Updated by John Hixson almost 3 years ago

Copied from Bug #27948: Allow Samba to also listen on loopback when specifying a Bind IP added

#2 Updated by John Hixson almost 3 years ago

11.1-stable PR: https://github.com/freenas/freenas/pull/1626

#3 Updated by Dru Lavigne almost 3 years ago

Status changed from Unscreened to In Progress
Needs QA changed from No to Yes
Needs Merging changed from No to Yes

#4 Updated by Dru Lavigne almost 3 years ago

Status changed from In Progress to Ready for Testing
Needs Merging changed from Yes to No

#5 Updated by Michael Reynolds almost 3 years ago

File BindLocalhost-2018-08-15.png BindLocalhost-2018-08-15.png added
Status changed from Ready for Testing to Passed Testing
Reason for Blocked deleted (~~Need verification~~)
Needs QA changed from Yes to No
Needs Doc changed from No to Yes

127.0.0.1 is now available in the list of "Bind IP Addresses"

see BindLocalhost-2018-08-15.png

#7 Updated by Dru Lavigne almost 3 years ago

Status changed from Passed Testing to Done

#9 Updated by Timothy Moore II almost 3 years ago

Needs Doc changed from Yes to No

Docs PR: https://github.com/freenas/freenas-docs/pull/336 - master branch only

#10 Updated by Dru Lavigne almost 3 years ago

Needs Doc changed from No to Yes

#11 Updated by Timothy Moore II almost 3 years ago

Needs Doc changed from Yes to No

Docs commit to freenas/11.1-stable branch: https://github.com/freenas/freenas-docs/commit/e40886861f2b6eb22a95337ce9e697c6c85f02ac

Also available in: Atom PDF

Project

General

Profile

FreeNAS

Issues

Tags

Custom queries