Windows Firewall Settings for Inter-Subnet Peer-to-Peer Networks File Sharing

With the use of VPNs and MPLS links, we usually want to share files between end points. This usually means sharing files between computers on different subnets, and frequently, the networks are configured peer-to-peer with no Windows Server environment. Windows 7 firewall rules require some editing to allow this to work. The purpose of this article is to provide step-by-step instructions for editing the firewall rules that will allow file and printer sharing between subnets.

[Here, we've assumed that the networks are designated as Private or Work networks on the computer being edited.]

Once you've absorbed the process outlined in this article, you will find this "shorthand list" a handy guide in changing the firewall rules:
Shorthand List:

File and Printer Sharing (LLMNR-UDP-In)             Private
                      File and Printer Sharing (NB-Datagram-In)           Private
                      File and Printer Sharing (NB-Name-In)               Private
                      File and Printer Sharing (NB-Session-In)            Private
                      File and Printer Sharing (SMB-In)                   Private

Open in new window

Step 1 Open:
Control Panel /
Administrative Tools /
Windows Firewall with Advanced Security

Step 2 Select Inbound Rules

Step 3 Click on the Column Heading “Name” to alphabetize the names. Scroll down the list so that all the File and Printer Sharing items are visible.

Step 4 Highlight File and Printer Sharing (LLMNR-UDP-In) with
            Profile: Private
            Protocol: UPD
            Local Port: 5355

            Right click and select Properties

Step 5 Highlight File and Printer Sharing (LLMNR-UDP-In) with
            Profile: Private
            Protocol: UPD
            Local Port: 5355

            Right click and select Properties

Step 6 Properties Dialog

Under DESCRIPTION you should see UPD 5355. Select the SCOPE TAB

Step 7 SCOPE Dialog

Under Remote IP address with “These IP addresses:” selected:

Click on “Add..”

NOTE: The subnets for the organization are as follows:

Site 1: 10.0.1.0/24
Site 2: 10.0.2.0/24
Site 3: 10.0.3.0/24

Step 8 Add one of your two *REMOTE* subnets.
That is:

if you are in Site 1 then you will add Site 2 and Site 3.
If you are in Site 2 then you will add Site 1 and Site 3.
If you are in Site 3 then you will add Site 1 and Site 2.

Step 9 Add the other of your two *REMOTE* subnets as above.

When you’re done, the dialog should look like the one shown in Step 7 with two entries.

Step   10 Highlight File and Printer Sharing (NB-Datagram-In) with
            Profile: Private
            Protocol: UDP
            Local Port: 138

            Right click and select Properties

Step 11 Properties Dialog

Under DESCRIPTION you should see UPD 138

Select the SCOPE TAB

REPEAT STEPS 7 through 9<<<<<<<<<<<<<<<<<<<<<<<

Step   12 Highlight File and Printer Sharing (NB-Name-In) with
            Profile: Private
            Protocol: UDP
            Local Port: 137

            Right click and select Properties

Step 13 Properties Dialog

Under DESCRIPTION you should see UPD 137

Select the SCOPE TAB

REPEAT STEPS 7 through 9<<<<<<<<<<<<<<<<<<<<<<<

Step   14 Highlight File and Printer Sharing (NB-Session-In) with
            Profile: Private
            Protocol: TCP
            Local Port: 139

            Right click and select Properties

Step 15 Properties Dialog

Under DESCRIPTION you should see TCP 139

Select the SCOPE TAB

REPEAT STEPS 7 through 9<<<<<<<<<<<<<<<<<<<<<<<

Step   16 Highlight File and Printer Sharing (SMB-In) with
            Profile: Private
            Protocol: TCP
            Local Port: 445

            Right click and select Properties

Step 17 Properties Dialog

Under DESCRIPTION you should see TCP 445←←←

Select the SCOPE TAB

REPEAT STEPS 7 through 9<<<<<<<<<<<<<<<<<<<<<<<

THE END……..

Windows Firewall Settings for Inter-Subnet Peer-to-Peer Networks File Sharing

Comments (0)