# Only the variables TCP, UDP, RPC, IP, BROADCAST, RELATED and
# MODULES are allowed. More may be supported in the future.
#
# For a more detailed description of the individual variables see
# the comments for FW_SERVICES_*_EXT in /etc/sysconfig/SuSEfirewall2
#

## Name: Samba 4 ADDC
## Description: opens ports for Samba 4 as ActiveDirectory DomainController

# http://wiki.samba.org/index.php/Samba_port_usage

# space separated list of allowed TCP ports
# With Samba-DNS:
# TCP="53 88 135 139 389 445 464 636 1024:5000 3268 3269 5353"
# With DNS in separate config (BIND):
TCP="88 135 139 389 445 464 636 1024:5000 3268 3269 5353"

# space separated list of allowed UDP ports
# With Samba-DNS:
# UDP="53 88 137 138 389 464 5353"
# With DNS in separate config (BIND):
UDP="88 137 138 389 464 5353"

# space separated list of allowed RPC services
RPC=""

# space separated list of allowed IP protocols
IP=""

# space separated list of allowed UDP ports that accept broadcasts
BROADCAST=""

### variables below are only needed in very special cases

# space separated list of net,protocol[,sport[,dport]]
# see FW_SERVICES_ACCEPT_RELATED_EXT
# net 0/0 means IPv4 and IPv6. If this sevice should only work for
# IPv4 use 0.0.0.0/0
RELATED=""

# additional kernel modules needed for this service
# see FW_LOAD_MODULES
MODULES=""
