I have Samba 3.0.21b compiled from source on FreeBSD 6.1-Beta, with the following options in the global configuration (taken almost strait from the FAQ on securing samba): interfaces = dc0 bind interfaces only = yes dc0 is one of the two ethernet adapters on my machine. However, when running nmbd, I see the following with netstat (192.168.0.254 is the address assigned to dc0): udp4 0 0 192.168.0.254.netbios- *.* udp4 0 0 192.168.0.254.netbios- *.* udp4 0 0 *.netbios-dgm *.* udp4 0 0 *.netbios-ns *.* smbd (correctly) only binds to 192.168.0.254 (dc0), thus this appears to be a bug in nmbd only.
This is by design. Jeremy.
(In reply to comment #1) > This is by design. > Jeremy. May I ask why? I see no reason to be listening on *, especially since anything coming in on the other interface on those ports is, in my case, blocked by the firewall. I don't know about other people's situations, but it seems to me that if you're going to restrict to an interface (or interfaces), it should do it on both nmbd and smbd.
Jeremy's right. This is by design. You can however is the current SAMBA_3_0 use the 'socket address' option to restrict this IIRC.
This bug should really be closed: "socket address" does the job
Closing.