Samba文件共享服务

最新推荐文章于 2025-05-27 19:43:21 发布

转载最新推荐文章于 2025-05-27 19:43:21 发布 · 330 阅读

1 samba安装
[root@linuxidc ~]# yum install samba cifs-utils -y

2 启动服务加入开机自启动
[root@linuxidc ~]# systemctl start smb
[root@linuxidc ~]# systemctl enable smb
Created symlink from /etc/systemd/system/multi-user.target.wants/smb.service to /usr/lib/systemd/system/smb.service.
[root@linuxidc ~]# ss -lntup | grep smb
tcp LISTEN 0 50 *:139 *:* users:(("smbd",pid=1095,fd=38))
tcp LISTEN 0 50 *:445 *:* users:(("smbd",pid=1095,fd=37))
tcp LISTEN 0 50 :::139 :::* users:(("smbd",pid=1095,fd=36))
tcp LISTEN 0 50 :::445 :::* users:(("smbd",pid=1095,fd=35))

3 配置samba
[root@linuxidc ~]# mv /etc/samba/smb.conf /etc/samba/smb.conf.bak
[root@linuxidc ~]# cat /etc/samba/smb.conf.bak | grep -v "#" | grep -v ";" | grep -v "^$" > /etc/samba/smb.conf
[root@linuxidc ~]# cat /etc/samba/smb.conf
[global]
workgroup = SAMBA
security = user
passdb backend = tdbsam
printing = cups
printcap name = cups
load printers = yes
cups options = raw
[homes]
comment = Home Directories
valid users = %S, %D%w%S
browseable = No
read only = No
inherit acls = Yes
[printers]
comment = All Printers
path = /var/tmp
printable = Yes
create mask = 0600
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = root
create mask = 0664
directory mask = 0775

4 修改配置文件如下

[root@linuxidc ~]# vim /etc/samba/smb.conf
添加如下内容：

[share]
comment = share folder
browseable = yes
path = /home/linuxidc/linuxidc.com/share
create mask = 0700
directory mask = 0700
valid users = linuxidc
force user = linuxidc
force group = linuxidc
public = yes
available = yes
writable = yes

5 添加一个用户用于访问共享资源
[root@linuxidc ~]# useradd samba_user
[root@linuxidc ~]# usermod -s /sbin/nologin samba_user

[root@linuxidc ~]# pdbedit -L
[root@linuxidc ~]# pdbedit -a -u samba_user
new password:
retype new password:
Unix username: samba_user
NT username:
Account Flags: [U ]
User SID: S-1-5-21-351179206-2754336130-384069223-1000
Primary Group SID: S-1-5-21-351179206-2754336130-384069223-513
Full Name:
Home Directory: \\linuxidc\samba_user
HomeDir Drive:
Logon Script:
Profile Path: \\linuxidc\samba_user\profile
Domain: linuxidc
Account desc:
Workstations:
Munged dial:
Logon time: 0
Logoff time: Wed, 06 Feb 2036 23:06:39 CST
Kickoff time: Wed, 06 Feb 2036 23:06:39 CST
Password last set: Tue, 14 Aug 2018 19:37:44 CST
Password can change: Tue, 14 Aug 2018 19:37:44 CST
Password must change: never
Last bad password : 0
Bad password count : 0
Logon hours : FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

[root@linuxidc ~]# chown -Rf samba_user.samba_user /data/samba/share/

6 重启服务测试
[root@linuxidc ~]# systemctl restart smb

7 发现windows不能访问所共享的内容,解决方法如下
[root@linuxidc ~]# iptables -F
[root@linuxidc ~]# firewall-cmd --permanent --add-service=samba
success
[root@linuxidc ~]# firewall-cmd --reload
success

[root@linuxidc ~]# getsebool -a | grep samba
samba_create_home_dirs --> off
samba_domain_controller --> off
samba_enable_home_dirs --> off
samba_export_all_ro --> off
samba_export_all_rw --> off
samba_load_libgfapi --> off
samba_portmapper --> off
samba_run_unconfined --> off
samba_share_fusefs --> off
samba_share_nfs --> off
sanlock_use_samba --> off
tmpreaper_use_samba --> off
use_samba_home_dirs --> off
virt_use_samba --> off
[root@linuxidc ~]# setsebool -P samba_enable_home_dirs on
[root@linuxidc ~]# setsebool -P samba_export_all_rw on

匿名访问成功