Banning IPs from SMB?

ha ha ha... yeah... maybe your stuff is legal, but the stuff they upload isn't legal... nice try at covering yourself

Sorry, but I don't know if you can do what you want or not.

i'm not sure of a specific thing in samba that will do this and a quick google search unveils nothing interesting, maybe my google-fu sucks tonight. You could add the IP to /etc/hosts.deny... at least that's in linux... might be something similiar ... xinetd has this ability as well

Firewall settings ... shouldn't be too complicated, but I have never done it, so I'm not really sure.

I have tested the /etc/hosts.deny approach, it is used by tcpd and man tcdp says:

"The tcpd program can be set up to monitor incoming requests for telnet,
finger, ftp, exec, rsh, rlogin, tftp, talk, comsat and other services
that have a one-to-one mapping onto executable files."

I wastn't able to make it work for apple file sharing, but it seems to work with smb and ssh.

What you do is quite simple. The hosts.allow and hosts.deny files doesn't exist by default, but the tcpd service will start working as soon as both files are created. Open a terminal:

Create an empty allow file
sudo touch /etc/hosts.allow

Create and edit the deny file
sudo pico /etc/hosts.deny

This will start the simple editor pico that will let you edit and save the file. For each IP that you wish to block, enter a line like this:
ALL: the.ip.to.block

The ALL: means to block all services for that ip.

That's it, the "offender" should now be blocked.

Learn to use ipfw from the command line, or use BrickHouse/SunShield to control it. But your line should look like this:

deny all from 123.123.123.123 to any in

Where 123.123.123.123 is the IP of the offending party.

OR

Check out /etc/smb.conf, the smb.conf man page, and the "host deny" section.

You can do all sorts of interesting things with Samba. Go to samba.org and read the documentation for smb.conf.