I have and opensuse server on my home lan. It will NOT allow me to connect to the samba shares. On the other hand, I have a Raspberry Pi server on the same lan, with an almost identical setup, and it DOES allow connections. And I can NOT find out why. I’ve spent several days worth of hours trying to fix this.
Let me plunge right in, with what I’ve checked already.
Permissions on the share and inherited directories and files: check, a-ok (i.e. user and group, 770)
testparm smb.conf: a-ok (actual results follow)
# testparm smb.conf
Load smb config files from smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section "[shared-herb]"
Loaded services file OK.
Server role: ROLE_STANDALONE
Press enter to see a dump of your service definitions
[global]
workgroup = SLAN
netbios name = HERB
server string = ""
interfaces = 127.0.0/8, eth0, 172.16.0.0/24, enp2s0, 172.16.0.0/24
bind interfaces only = Yes
map to guest = Bad User
obey pam restrictions = Yes
name resolve order = bcast, host, lmhosts, wins
show add printer wizard = No
os level = 99
domain master = No
idmap config * : backend = tdb
[shared-herb]
comment = all home
path = /home/share
force user = mark
read only = No
create mask = 0775
directory mask = 0775
inherit acls = Yes
for comparison, here is the smb.conf for the r-pi server, which is working:
#=================== Global Settings =======================
[global]
## Browsing/Identification ###
workgroup = SLAN
netbios name = rpi
local master = yes
preferred master = yes
os level = 65
server string = ""
wins support = no
domain logons = No
domain master = No
add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$
# wins server =
name resolve order = bcast host lmhosts wins
show add printer wizard = No
#### Networking ####
interfaces = 127.0.0.0/8 eth0 172.16.0.0/24
bind interfaces only = yes
#### Debugging/Accounting ####
log file = /var/log/samba/log.%m
max log size = 1000
syslog = 0
panic action = /usr/share/samba/panic-action %d
####### Authentication #######
security = user
encrypt passwords = true
passdb backend = tdbsam
obey pam restrictions = yes
map to guest = bad user
########## Printing ##########
load printers = yes
printing = cups
printcap name = cups
printcap cache time = 750
cups options = raw
use client driver = yes
#======================= Share Definitions =======================
[shared]
comment = big common space
inherit acls = Yes
path = /home/shared
browseable = yes
read only = no
force user = mark
create mask = 0775
directory mask = 0775
[printers]
comment = All Printers
browseable = no
path = /var/spool/samba
printable = yes
guest ok = yes
read only = yes
create mask = 0700
The latter is slightly edited to remove names and commented lines.
here is the result of smbtree -L
SLAN
\\RPI
\\RPI\Dude Brother HL-2270DW series
\\RPI\PDF PDF
\\RPI\IPC$ IPC Service ("")
\\RPI\shared big common space
\\HERB
\\HERB\IPC$ IPC Service ("")
\\HERB\shared-herb all home
Herb is the server that won’t allow connections.
All the machines on my lan can see the servers with their names - win7 AND ubuntu boxes. But when I try to ping the names? Nogo.
ping -c3 HERB
ping: unknown host HERB
Ditto the R-Pi server.
But, if I use their url, no prob:
ping -c3 172.16.0.114
PING 172.16.0.114 (172.16.0.114) 56(84) bytes of data.
64 bytes from 172.16.0.114: icmp_seq=1 ttl=64 time=0.688 ms
64 bytes from 172.16.0.114: icmp_seq=2 ttl=64 time=0.641 ms
64 bytes from 172.16.0.114: icmp_seq=3 ttl=64 time=0.589 ms
--- 172.16.0.114 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 1999ms
rtt min/avg/max/mdev = 0.589/0.639/0.688/0.045 ms
mark@main:~$ ping -c3 172.16.0.104
PING 172.16.0.104 (172.16.0.104) 56(84) bytes of data.
64 bytes from 172.16.0.104: icmp_seq=1 ttl=64 time=1.16 ms
64 bytes from 172.16.0.104: icmp_seq=2 ttl=64 time=1.11 ms
64 bytes from 172.16.0.104: icmp_seq=3 ttl=64 time=1.10 ms
Let me see, where else did I go? How about nmap from the client side. Using Zenmap:
172.16.0.104 (the openSuse server that won’t allow Samba connection)
Starting Nmap 6.40 ( http://nmap.org ) at 2015-03-10 19:15 EDT
NSE: Loaded 110 scripts for scanning.
NSE: Script Pre-scanning.
Initiating ARP Ping Scan at 19:15
Scanning 172.16.0.104 [1 port]
Completed ARP Ping Scan at 19:15, 0.21s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 19:15
Completed Parallel DNS resolution of 1 host. at 19:15, 0.11s elapsed
Initiating SYN Stealth Scan at 19:15
Scanning 172.16.0.104 [1000 ports]
Discovered open port 445/tcp on 172.16.0.104
Discovered open port 139/tcp on 172.16.0.104
Discovered open port 22/tcp on 172.16.0.104
Completed SYN Stealth Scan at 19:16, 13.02s elapsed (1000 total ports)
Initiating Service scan at 19:16
Scanning 3 services on 172.16.0.104
Completed Service scan at 19:16, 11.02s elapsed (3 services on 1 host)
Initiating OS detection (try #1) against 172.16.0.104
Retrying OS detection (try #2) against 172.16.0.104
NSE: Script scanning 172.16.0.104.
Initiating NSE at 19:16
Completed NSE at 19:17, 40.06s elapsed
Nmap scan report for 172.16.0.104
Host is up (0.0011s latency).
Not shown: 997 filtered ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.2 (protocol 2.0)
| ssh-hostkey: 1024 59:a9:2d:bb:77:2e:96:75:67:a1:55:97:49:32:49:92 (DSA)
|_2048 06:06:5f:9c:be:bc:76:51:f1:4d:d4:e6:59:25:aa:91 (RSA)
139/tcp open netbios-ssn Samba smbd 3.X (workgroup: HERB)
445/tcp open netbios-ssn Samba smbd 3.X (workgroup: HERB)
MAC Address: 00:13:20:C8:20:C3 (Intel Corporate)
Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
Aggressive OS guesses: Linux 2.6.32 - 3.9 (93%), Linux 3.0 - 3.9 (93%), Linux 2.6.32 - 3.6 (92%), Linux 2.6.32 (90%), Linux 2.6.22 - 2.6.36 (90%), Linux 2.6.39 (90%), Crestron XPanel control system (89%), Netgear DG834G WAP or Western Digital WD TV media player (89%), Linux 2.6.32 - 2.6.35 (88%), Linux 2.6.32 - 3.2 (88%)
No exact OS matches for host (test conditions non-ideal).
Uptime guess: 0.114 days (since Tue Mar 10 16:33:30 2015)
Network Distance: 1 hop
TCP Sequence Prediction: Difficulty=250 (Good luck!)
IP ID Sequence Generation: All zeros
Host script results:
| nbstat:
| NetBIOS name: HERB, NetBIOS user: <unknown>, NetBIOS MAC: <unknown>
| Names
| HERB<00> Flags: <unique><active>
| HERB<03> Flags: <unique><active>
| HERB<20> Flags: <unique><active>
| \x01\x02__MSBROWSE__\x02<01> Flags: <group><active>
| SLAN<00> Flags: <group><active>
| SLAN<1d> Flags: <unique><active>
|_ SLAN<1e> Flags: <group><active>
| smb-os-discovery:
| OS: Unix (Samba 4.1.17-3.30.1-3375-SUSE-oS13.1-i386)
| NetBIOS computer name: HERB
| Workgroup: SLAN
|_ System time: 2015-03-10T19:07:54-04:00
| smb-security-mode:
| Account that was used for smb scripts: guest
| User-level authentication
| SMB Security: Challenge/response passwords supported
|_ Message signing disabled (dangerous, but default)
|_smbv2-enabled: Server supports SMBv2 protocol
TRACEROUTE
HOP RTT ADDRESS
1 1.11 ms 172.16.0.104
NSE: Script Post-scanning.
Initiating NSE at 19:17
Completed NSE at 19:17, 0.00s elapsed
Read data files from: /usr/bin/../share/nmap
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 69.54 seconds
Raw packets sent: 3098 (141.528KB) | Rcvd: 59 (4.748KB)
vs 172.16.0.114 (the raspbian server that does allow smb connex)
Starting Nmap 6.40 ( http://nmap.org ) at 2015-03-10 19:22 EDT
NSE: Loaded 110 scripts for scanning.
NSE: Script Pre-scanning.
Initiating ARP Ping Scan at 19:22
Scanning 172.16.0.114 [1 port]
Completed ARP Ping Scan at 19:22, 0.22s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 19:22
Completed Parallel DNS resolution of 1 host. at 19:22, 0.12s elapsed
Initiating SYN Stealth Scan at 19:22
Scanning 172.16.0.114 [1000 ports]
Discovered open port 445/tcp on 172.16.0.114
Discovered open port 22/tcp on 172.16.0.114
Discovered open port 139/tcp on 172.16.0.114
Discovered open port 631/tcp on 172.16.0.114
Completed SYN Stealth Scan at 19:23, 14.22s elapsed (1000 total ports)
Initiating Service scan at 19:23
Scanning 4 services on 172.16.0.114
Completed Service scan at 19:23, 11.03s elapsed (4 services on 1 host)
Initiating OS detection (try #1) against 172.16.0.114
Retrying OS detection (try #2) against 172.16.0.114
NSE: Script scanning 172.16.0.114.
Initiating NSE at 19:23
Completed NSE at 19:23, 40.02s elapsed
Nmap scan report for 172.16.0.114
Host is up (0.00073s latency).
Not shown: 995 filtered ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.0p1 Debian 4+deb7u2 (protocol 2.0)
| ssh-hostkey: 1024 38:ec:2f:77:74:6e:17:25:27:a1:97:30:56:33:43:2e (DSA)
| 2048 ae:b3:b6:51:b7:e1:f1:cb:b3:41:79:3a:e7:4d:11:c9 (RSA)
|_256 2d:41:ea:81:a4:be:93:d6:09:16:25:6e:9d:47:6e:7e (ECDSA)
80/tcp closed http
139/tcp open netbios-ssn Samba smbd 3.X (workgroup: SLAN)
445/tcp open netbios-ssn Samba smbd 3.X (workgroup: SLAN)
631/tcp open ipp CUPS 1.5
| http-methods: GET HEAD OPTIONS POST PUT
| Potentially risky methods: PUT
|_See http://nmap.org/nsedoc/scripts/http-methods.html
| http-robots.txt: 1 disallowed entry
|_/
|_http-title: Home - CUPS 1.5.3
MAC Address: B8:27:EB:4D:3A:AF (Raspberry Pi Foundation)
Aggressive OS guesses: Android 4.1.1 (94%), HP P2000 G3 NAS device (93%), Linux 3.0 - 3.9 (93%), Linux 2.6.31 - 2.6.35 (91%), Linux 2.6.32 - 2.6.39 (91%), Linux 2.6.32 - 3.9 (89%), Linux 2.6.26 - 2.6.35 (89%), Crestron XPanel control system (88%), Linux 2.6.15 - 2.6.30 (88%), Linux 2.6.22 (88%)
No exact OS matches for host (test conditions non-ideal).
Uptime guess: 127.357 days (since Mon Nov 3 09:49:13 2014)
Network Distance: 1 hop
TCP Sequence Prediction: Difficulty=261 (Good luck!)
IP ID Sequence Generation: All zeros
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
Host script results:
| nbstat:
| NetBIOS name: PI-SERVER, NetBIOS user: <unknown>, NetBIOS MAC: <unknown>
| Names
| RPI<00> Flags: <unique><active>
| RPI<03> Flags: <unique><active>
| RPI<20> Flags: <unique><active>
| SLAN<1e> Flags: <group><active>
|_ SLAN<00> Flags: <group><active>
| smb-os-discovery:
| OS: Unix (Samba 3.6.6)
| Computer name: RPI
| NetBIOS computer name:
| Domain name:
| FQDN: RPI
|_ System time: 2015-03-10T19:23:18-04:00
| smb-security-mode:
| Account that was used for smb scripts: guest
| User-level authentication
| SMB Security: Challenge/response passwords supported
|_ Message signing disabled (dangerous, but default)
|_smbv2-enabled: Server doesn't support SMBv2 protocol
TRACEROUTE
HOP RTT ADDRESS
1 0.73 ms 172.16.0.114
NSE: Script Post-scanning.
Initiating NSE at 19:23
Completed NSE at 19:23, 0.00s elapsed
Read data files from: /usr/bin/../share/nmap
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 70.43 seconds
Raw packets sent: 3085 (140.764KB) | Rcvd: 68 (5.084KB)
About the only difference I can see that MIGHT be significant is the Smbv2 compatibility. The WORKING server is
|_smbv2-enabled: Server doesn't support SMBv2 protocol
And I can’t find, via google, how to enable or disable a SMB protocol version on the server. From what I’ve read, this should not be an issue.
What else. How about distros and version details - ok.
The non-working openSuse server (cat /proc/version):
Linux version 3.11.10-25-desktop (geeko@buildhost) (gcc version 4.8.1 20130909 [gcc-4_8-branch revision 202388] (SUSE Linux) ) #1 SMP PREEMPT Wed Dec 17 17:57:03 UTC 2014 (8210f77)
and
$ cat /etc/*-release
NAME=openSUSE
VERSION="13.1 (Bottle)"
VERSION_ID="13.1"
PRETTY_NAME="openSUSE 13.1 (Bottle) (i586)"
ID=opensuse
ANSI_COLOR="0;32"
CPE_NAME="cpe:/o:opensuse:opensuse:13.1"
BUG_REPORT_URL="https://bugs.opensuse.org"
HOME_URL="https://opensuse.org/"
ID_LIKE="suse"
openSUSE 13.1 (i586)
VERSION = 13.1
CODENAME = Bottle
The working raspberry pi Raspbian server:
Linux version 3.12.28+ (dc4@dc4-XPS13-9333) (gcc version 4.8.3 20140303 (prerelease) (crosstool-NG linaro-1.13.1+bzr2650 - Linaro GCC 2014.03) ) #709 PREEMPT Mon Sep 8 15:28:00 BST 2014
~$ cat /etc/*-release
PRETTY_NAME="Raspbian GNU/Linux 7 (wheezy)"
NAME="Raspbian GNU/Linux"
VERSION_ID="7"
VERSION="7 (wheezy)"
ID=raspbian
ID_LIKE=debian
ANSI_COLOR="1;31"
HOME_URL="http://www.raspbian.org/"
SUPPORT_URL="http://www.raspbian.org/RaspbianForums"
BUG_REPORT_URL="http://www.raspbian.org/RaspbianBugs"
I can connect to the drive via sshfs, and I can connect to the machine via ssh.
So I’m reduced to sitting here and saying things like “Holy Cow, Batman! Why won’t it work?” Your analysis is welcome, hopefully somebody can see something I don’t!