Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

NetBIOS traffic (internal) Firewall rules

Posted on 2006-07-20
7
403 Views
Last Modified: 2013-11-16
I've looked up the NetBIOS ports and what is used.  I've read through the RFC's, but I haven't been able to determine directionality.  Here is the general idea for what I am looking for.  If someone can provide all minimal firewall rules necessary for NetBIOS traffic to function, it would be greatly appreciated.  I am looking for traffic between workstation and server.

Thanks

Awakenings

0
Comment
Question by:awakenings
  • 4
  • 2
7 Comments
 
LVL 32

Accepted Solution

by:
rsivanandan earned 350 total points
ID: 17146123
Most Part;

Port 135, 137-139 and 445 (Both UDP and TCP)

Allow them and should be okay.

Cheers,
Rajesh
0
 

Author Comment

by:awakenings
ID: 17146244
Rajesh,

     But do I need them bidirectionally?  Can I minumize them for only outbound from workstation to server?  The ports are listed in ARIN and I can see the information you just provided.  I am looking for the minimum requirement between workstation and server.  What I am looking for is this;

Workstation tcp 135 outbound serever
Workstation udp 135 bidirectional server
Workstation tcp 137 outbound server.
etc.


    If you can provide this, it would be greatly appreciated.


Awakenings
0
 
LVL 32

Assisted Solution

by:rsivanandan
rsivanandan earned 350 total points
ID: 17146399
Except for 135 (Wins I believe), all should be enabled towards the server.

Cheers,
Rajesh
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 7

Assisted Solution

by:nttranbao
nttranbao earned 150 total points
ID: 17146648
Reference about the NETBIOS port security

http://www.nacs.uci.edu/security/netbios.html#what
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17223459
thnx for the points, I hope you got the situation under control ?

Cheers,
Rajesh
0
 

Author Comment

by:awakenings
ID: 17223707
Rajesh,

    Yes.  It took alot of research and analysis of existing rules to determine how things are supposed to be set up.

Awakenings
0
 
LVL 32

Expert Comment

by:rsivanandan
ID: 17223776
Ok. cool. One time job, pays off for future too :-)

Cheers,
Rajesh
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
I had an issue with InstallShield not being able to use Computer Browser service on Windows Server 2012. Here is the solution I found.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question