Solved

NetBIOS traffic (internal) Firewall rules

Posted on 2006-07-20
7
401 Views
Last Modified: 2013-11-16
I've looked up the NetBIOS ports and what is used.  I've read through the RFC's, but I haven't been able to determine directionality.  Here is the general idea for what I am looking for.  If someone can provide all minimal firewall rules necessary for NetBIOS traffic to function, it would be greatly appreciated.  I am looking for traffic between workstation and server.

Thanks

Awakenings

0
Comment
Question by:awakenings
  • 4
  • 2
7 Comments
 
LVL 32

Accepted Solution

by:
rsivanandan earned 350 total points
ID: 17146123
Most Part;

Port 135, 137-139 and 445 (Both UDP and TCP)

Allow them and should be okay.

Cheers,
Rajesh
0
 

Author Comment

by:awakenings
ID: 17146244
Rajesh,

     But do I need them bidirectionally?  Can I minumize them for only outbound from workstation to server?  The ports are listed in ARIN and I can see the information you just provided.  I am looking for the minimum requirement between workstation and server.  What I am looking for is this;

Workstation tcp 135 outbound serever
Workstation udp 135 bidirectional server
Workstation tcp 137 outbound server.
etc.


    If you can provide this, it would be greatly appreciated.


Awakenings
0
 
LVL 32

Assisted Solution

by:rsivanandan
rsivanandan earned 350 total points
ID: 17146399
Except for 135 (Wins I believe), all should be enabled towards the server.

Cheers,
Rajesh
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 7

Assisted Solution

by:nttranbao
nttranbao earned 150 total points
ID: 17146648
Reference about the NETBIOS port security

http://www.nacs.uci.edu/security/netbios.html#what
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17223459
thnx for the points, I hope you got the situation under control ?

Cheers,
Rajesh
0
 

Author Comment

by:awakenings
ID: 17223707
Rajesh,

    Yes.  It took alot of research and analysis of existing rules to determine how things are supposed to be set up.

Awakenings
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17223776
Ok. cool. One time job, pays off for future too :-)

Cheers,
Rajesh
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question