Shulou(Shulou.com)06/03 Report--

Samba Protocol Foundation

After NetBIOS appeared, Microsoft implemented a network file/print service system using NetBIOS, which set up a file sharing protocol based on NetBIOS, which Microsoft called SMB (Server Message Block) protocol. This protocol is used by Microsoft in their Lan Manager and Windows NT server systems to share printers, serial ports, and communication abstractions (named pipes, mail slots, etc.) between different computers.

With the popularity of the Internet, Microsoft hopes to extend this protocol to the Internet and become a standard for sharing data between computers on the Internet. Therefore, it organized the original SMB protocol with little technical documentation, renamed it CIFS (Common Internet File System), and intended to separate it from NetBIOS in an attempt to make it a standard protocol on the Internet.

Therefore, in order to integrate Windows and Unix computers, the best way is to install software that supports SMB/CIFS protocols on Unix computers, so that Windows customers do not need to change settings and can use resources on Unix computers as if they were using Windows NT servers. Samba is a software used to implement SMB, which works by allowing NETBIOS (Windows 95 Network Neighborhood Communication Protocol) and SMB (Server Message Block) to run on top of TCP/IP communication protocols, and using Windows 'NETBEUI protocol to make Unix computers visible to Windows computers on network neighbors.

How Samba works

SAMBA mainly provides SMB/CIFS or NETBIOS protocols.

So with SAMBA, you can make Linux appear in Windows 'network neighbors, or Windows file sharing on Linux--

Once installed on Linux, there are two main processes:

1. nmbd : Provides NETBIOS name resolution

2. smdb : provides file sharing.

Because NETBIOS protocol listens on TCP port 139 and UDP ports 137 and 138 for Windows, nmbd simulates UDP ports 137 and 138 on Linux, TCP port 139, and TCP port 445 on smdb. SAMBA will listen on all four ports simultaneously on Linux.

Samba installation and configuration

1. Installation

yum install samba

After installation, the configuration file is placed in/etc/samba/smb.conf

View samba packages after installation

yum list all | grep ^samba

samba-client.x86_64 3.6.23-43.el6_9 @updates

samba-common.x86_64 3.6.23-43.el6_9 @updates

These two are used as clients.

samba.x86_64 3.6.23-43.el6_9 @updates

This is used as a server.

samba-swat-3.5.10-125.el6.x86_64 //samba server web configuration interface based on https protocol

2. Configuration

The configuration file has four main sections

1. Global Configuration [global]

2. Home Directory [homes]

3. Independent sharing [printer]

4, custom

First paragraph analysis [golbal]

Workgroup = MYGROUP Define Workgroup

Server string = Samba Server Version %v

Used for comment information that appears when you open your network neighbor

netbios name = xxx Show name in terminal

interfaces = lo eth0 192.168.12.2/24192.168.13.2/24

hosts allow = 127. 192.168.12. 192.168.13.

Defining Access Control Lists

Security = user

This item is important to define the SAMBA service security level. There are mainly 4 security levels.

1. share: Allow any anonymous user to access

2, user: default, each user needs to provide an account password when accessing

3、domain/server:

It usually means that the user's account password is centralized by a third party at authentication time

Authentication, rather than authentication through a system, such as a dedicated authentication service

Device (AD domain, nis, etc.)

If samba servers are added to a windows domain environment, authentication overalls will be handled by the windows domain controller, and domain-level samba servers will simply become member clients of the domain and will not have server features, as earlier versions of samba used to log into windows domains at this level.

4. ads: authenticated by the master domain controller

passdb backend = tdbsam All samba user authentication methods

load printers = yes Do you want to try loading printers

cups options = raw Universal printing system, specifies printing method

When a samba server is added to a windows domain environment using ads security, it has all the features of the domain security model and can function as a domain controller.

Second paragraph analysis [homes]

comment = Homedirectories Comment information

browseable = no

Browse, if this user is not the owner of this directory, can you see this directory

No means only the owner can see it.

writeable = yes whether to create a folder, yes no no

Third paragraph analysis [printers]

comment = All printers

path = /var/spool/samba print pool

browseable = no

guest ok = no whether the printer is public

wirtable = no

printable = yes

The fourth paragraph custom analysis [tools] in parentheses indicates the shared name

comment = mytools Comment

path = /share Path to shared directory

browseable =yes browseable

guest ok =yes Allow guest accounts

writeable = yes is writeable

write list = xxx defines a list that determines whether a user/group can be written, when defining a group

, need to use @ group name

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.