System Message Block (SMB) - Port 445

Is it possible to restrict access to port 445( few different services & applications) using Windows 7 firewall and block everything else on inbound traffic only.... ????
MikeSecurityAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

arnoldCommented:
No, you can not block access to a port based on the service that will be generating the requests.
0
MikeSecurityAuthor Commented:
so you are not able to set up inbound rule to only allow certain applications to use SMB and block all other inbound request... ?
0
arnoldCommented:
You would need to configure the outbound side to deny/block the applications from being able to access external resources.
Windows Firewall control panel, advanced settings is where you can define the rules.
You could restrict inbound requests to specific resources, but I do not think you can restrict access on a granular level i.e. workstations can not while server can.

What is it you want to do? you could export the default policy.
Adjust settings and see if you achieve what you want. If it does not work, restore/import the policy.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ON-DEMAND: 10 Easy Ways to Lose a Password

Learn about the methods that hackers use to lift real, working credentials from even the most security-savvy employees in this on-demand webinar. We cover the importance of multi-factor authentication and how these solutions can better protect your business!

marek1712Commented:
The closest way would be to create ACLs - list of IPs that can access mentioned host.
You'd need L7 firewall that would inspect packets for any application-specific traffic (provided the applications you want to block generate one).
0
McKnifeCommented:
@arnold
Is there any difference between win7 and 2008r2 firewall? I cannot find any.
Marek, did you even bother to open win7 firewall with advanced security? The "advanced" part is important. Now look at the default inbound rules and judge what can be done.
0
TolomirAdministratorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Legacy OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.