Windows Firewall

Posted on 2008-11-04
Last Modified: 2010-04-21
Since I am asking two questions I am upping the number of points

I am running Windows Server 2008 on my network.  When I try to go to a \\servername\share I get blocked by the outbound firewall.  Example

SererA has the share I am tring to access from ServerB.  From ServerB I click Start/Run and type \\serverA\share when I disable the Firewall on ServerB it works (yes, the firewall on ServerA is enabled).

The questions
1)  What port do I need to enable or Firewall rule so this works in a secure fashoin on my internal network.
2)  How can tell what port a firewall is blocking in the future?  Is there a utility or technique?

If you have the answer to part of the question please respond and I will split the points accordingly.

ps: Name resolution works just fine I have tested that several ways nslookup, ping -a, both firewalls down it works and with Firewall up on serverA name resolution works.
Question by:eferron
    LVL 5

    Assisted Solution

    Network sharing uses port 445 (SMB). You can make an exception in your FW for "File and Print sharing". If you're using Windows Firewall, this is only application level firewall, and not to be used as a perimeter firewall, since it is not stateful.
    LVL 31

    Accepted Solution

    File sharing is using 139/TCP

    Logging can be enabled at Administrative Tools->Windows Firewall with Advanced Security
    Right-click on root node in the left pane and choose properties. On each profile-tab (domain, private, public), you can enable logging for successful connections and/or dropped packets.

    Author Closing Comment


    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    How your wiki can always stay up-to-date

    Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
    - Increase transparency
    - Onboard new hires faster
    - Access from mobile/offline

    Recently, I was asked to look into SCCM 2007 by my employer, having a degree of experience of earlier versions of SMS and some previous SCCM knowledge I didn't expect the procedure to involve to much time. I read a number of guides concerning it…
    If you migrate a Terminal Server licenses server inside the 2008 server family, you can takte advantage of the build-in migration tool. If you like to migrate an older 2003 Server (and the installed client CALs) to a 2008 R2 server for example, you …
    This tutorial will show how to inventory, catalog, and restore media from legacy versions of Backup Exec into both 2012 and 2014 versions of the software. Select Storage from the tabs along the ribbon bar as the top: Ensure the proper storage devi…
    This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now