一.安装samba服务
udp 137 138
tcp 139 445
前提:关闭防火墙和selinux
systemctl stop firewalld
sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/selinux/config
安装samba:
[root@lewis63 ~]# yum -y install samba
[root@lewis63 ~]# systemctl start smb
查看端口:
[root@lewis63 ~]# netstat -anput | grep smb
tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 8590/smbd
tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 8590/smbd
tcp 0 0 192.168.1.63:445 192.168.1.10:58783 ESTABLISHED 8596/smbd
tcp6 0 0 :::139 :::* LISTEN 8590/smbd
tcp6 0 0 :::445 :::* LISTEN 8590/smbd
二.匿名访问
[root@lewis63 ~]# vim /etc/samba/smb.conf
[global]
workgroup = SAMBA
security = user
map to guest = Bad User #加入这句,允许匿名访问
#设置一个共享目录
[share]
comment = share software
path = /share #该目录必须存在
public = yes
[root@lewis63 ~]# mkdir /share
重启服务:
[root@lewis63 ~]# systemctl restart smb
Windows测试:
\\192.168.1.63\share
三.通过用户名密码访问
[root@lewis63 ~]# vim /etc/samba/smb.conf
[global]
workgroup = SAMBA
security = user
map to guest = Bad User
passdb backend = smbpasswd
smb passwd file = /etc/samba/smbpasswd
添加销售部组和成员
[root@lewis63 ~]# groupadd sales
[root@lewis63 ~]# useradd -g sales user01
[root@lewis63 ~]# useradd -g sales user02
为销售部成员添加samba账号设置密码
smbpasswd -a 添加用户
[root@lewis63 ~]# smbpasswd -a user01
New SMB password:
Retype new SMB password:
startsmbfilepwent_internal: file /etc/samba/smbpasswd did not exist. File successfully created.
Added user user01.
[root@lewis63 ~]# smbpasswd -a user02
设置用户或组访问
[root@lewis63 ~]# vim /etc/samba/smb.conf
加入
[sales]
comment = sales data
path = /sales
valid users = @sales
[root@lewis63 ~]# mkdir /sales #创建共享目录
[root@lewis63 ~]# systemctl restart smb
测试
扩展参数:
hosts allow = 192.168.1.63 允许访问的客户端
hosts deny = 192.168.4 禁止访问的客户端(禁止192.168.4.0/24网段的IP访问)
hosts allow 优先级高
四.设置samba可写权限
设置可写权限
服务权限:
[root@lewis63 ~]# vim /etc/samba/smb.conf
[sales]
comment = sales data
path = /sales
valid users = @sales
writable = yes
目录权限
[root@lewis63 ~]# chmod 777 /sales
测试:
可以创建 删除 改名文件
五.Boss用户和sales组都可以读写
[root@lewis63 ~]# useradd boss1
[root@lewis63 ~]# smbpasswd -a boss1
[root@lewis63 ~]# vim /etc/samba/smb.conf
[sales]
comment = sales data
path = /sales
write list = boss1,@sales
注销window连接Samba服务的账号信息
cmd下执行net use * /del,按y回车