CentOS 6.8安装samba

最新推荐文章于 2022-07-10 17:30:20 发布

久远成传说

最新推荐文章于 2022-07-10 17:30:20 发布

阅读量1.3k

点赞数

CC 4.0 BY-SA版权

分类专栏： CentOS_6

本文为博主收集整理 or 原创，觉得本文不错请素质三连(点赞、评论、收藏)，您的支持是我写下去的动力，如若侵权请联系删除。O(∩_∩)O~

本文链接：https://blog.csdn.net/qq_35590198/article/details/78991207

CentOS_6 专栏收录该内容

60 篇文章

订阅专栏

本文介绍了在CentOS 6.8系统中如何关闭SELinux，开启iptables，并详细讲解了安装、配置Samba服务的过程，包括设置用户权限、修改iptables配置、创建Samba用户及家目录，以及启动和验证Samba服务的步骤。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

系统：CentOS 6.8
selinux：关闭
iptables：打开

samba服务要求：
使用用户名/密码登陆，有读写权限。

SELinux设置

# setenforce 0
# sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config

iptables设置（可参考 http://man.linuxde.net/iptables）

# iptables -I INPUT 5 -m state --state NEW -m tcp -p tcp --dport 139 -j ACCEPT
# iptables -I INPUT 5 -m state --state NEW -m tcp -p tcp --dport 445 -j ACCEPT
# iptables -I INPUT 5 -p udp -m udp --dport 137 -j ACCEPT
# iptables -I INPUT 5 -p udp -m udp --dport 138 -j ACCEPT
# iptables-save > /home/iptables.save
# iptables-restore </home/iptables.save
# iptables -L -n

为避免iptables规则重启服务或机器后防火墙规则恢复为默认，修改iptables配置文件

# cat /etc/sysconfig/iptables

# Firewall configuration written by system-config-firewall
# Manual customization of this file is not recommended.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 445 -j ACCEPT
-A INPUT -p tcp -m state --state NEW -m tcp --dport 139 -j ACCEPT
-A INPUT -p udp -m udp --dport 138 -j ACCEPT
-A INPUT -p udp -m udp --dport 137 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A FORWARD -j REJECT --reject-with icmp-host-prohibited
COMMIT

samba服务安装

# yum -y install samba samba-client samba-common
已安装:
  samba.x86_64 0:3.6.23-45.el6_9                  samba-client.x86_64 0:3.6.23-45.el6_9          
  samba-common.x86_64 0:3.6.23-45.el6_9          

作为依赖被安装:
  samba-winbind.x86_64 0:3.6.23-45.el6_9      samba-winbind-clients.x86_64 0:3.6.23-45.el6_9

为samba服务创建用户、属组以及修改权限（samba家目录:/home/samba，用户名:smb，属组:smb）;设置开机启动服务

# groupadd smb
# useradd smb -d /home/smb/ -g smb -s /sbin/nologin
# chown -R smb:smb /home/smb/
# smbpasswd -a smb
# chkconfig nmb on
# chkconfig smb on

启动服务

# /etc/init.d/smb start
# /etc/init.d/nmb start
# ss -tnl|grep :139
LISTEN     0      50                        *:139                      *:*     
LISTEN     0      50                       :::139                     :::* 
# ss -tnl|grep :445
LISTEN     0      50                        *:445                      *:*     
LISTEN     0      50                       :::445                     :::*

验证
这里写图片描述

这里写图片描述

最后附上smb.conf文件

# cat /etc/samba/smb.conf|grep -v "#"

[global]

    workgroup = MYGROUP
    server string = Samba Server Version %v

;   netbios name = MYSERVER

;   interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24 
;   hosts allow = 127. 192.168.12. 192.168.13.


    log file = /var/log/samba/log.%m
    max log size = 50


    security = user
    passdb backend = tdbsam




;   security = domain
;   passdb backend = tdbsam
;   realm = MY_REALM

;   password server = <NT-Server-Name>

;   security = user
;   passdb backend = tdbsam

;   domain master = yes 
;   domain logons = yes

;   logon script = %m.bat
;   logon script = %u.bat
;   logon path = \\%L\Profiles\%u
;   logon path =          

;   add user script = /usr/sbin/useradd "%u" -n -g users
;   add group script = /usr/sbin/groupadd "%g"
;   add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"
;   delete user script = /usr/sbin/userdel "%u"
;   delete user from group script = /usr/sbin/userdel "%u" "%g"
;   delete group script = /usr/sbin/groupdel "%g"


;   local master = no
;   os level = 33
;   preferred master = yes


;   wins support = yes
;   wins server = w.x.y.z
;   wins proxy = yes

;   dns proxy = yes


    load printers = yes
    cups options = raw

;   printcap name = /etc/printcap
;   printcap name = lpstat
;   printing = cups


;   map archive = no
;   map hidden = no
;   map read only = no
;   map system = no
;   store dos attributes = yes



[homes]
    comment = Home Directories
    browseable = no
    writable = yes
;   valid users = %S
;   valid users = MYDOMAIN\%S

[printers]
    comment = All Printers
    path = /var/spool/samba
    browseable = no
    guest ok = no
    writable = no
    printable = yes

;   [netlogon]
;   comment = Network Logon Service
;   path = /var/lib/samba/netlogon
;   guest ok = yes
;   writable = no
;   share modes = no


;   [Profiles]
;   path = /var/lib/samba/profiles
;   browseable = no
;   guest ok = yes


;   [public]
;   comment = Public Stuff
;   path = /home/samba
;   public = yes
;   writable = yes
;   printable = no
;   write list = +staff