• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 836
  • Last Modified:

System Message Block (SMB) - Port 445

Is it possible to restrict access to port 445( few different services & applications) using Windows 7 firewall and block everything else on inbound traffic only.... ????
0
Mike
Asked:
Mike
2 Solutions
 
arnoldCommented:
No, you can not block access to a port based on the service that will be generating the requests.
0
 
MikeSecurityAuthor Commented:
so you are not able to set up inbound rule to only allow certain applications to use SMB and block all other inbound request... ?
0
 
arnoldCommented:
You would need to configure the outbound side to deny/block the applications from being able to access external resources.
Windows Firewall control panel, advanced settings is where you can define the rules.
You could restrict inbound requests to specific resources, but I do not think you can restrict access on a granular level i.e. workstations can not while server can.

What is it you want to do? you could export the default policy.
Adjust settings and see if you achieve what you want. If it does not work, restore/import the policy.
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
marek1712Commented:
The closest way would be to create ACLs - list of IPs that can access mentioned host.
You'd need L7 firewall that would inspect packets for any application-specific traffic (provided the applications you want to block generate one).
0
 
McKnifeCommented:
@arnold
Is there any difference between win7 and 2008r2 firewall? I cannot find any.
Marek, did you even bother to open win7 firewall with advanced security? The "advanced" part is important. Now look at the default inbound rules and judge what can be done.
0
 
TolomirAdministratorCommented:
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Get free NFR key for Veeam Availability Suite 9.5

Veeam is happy to provide a free NFR license (1 year, 2 sockets) to all certified IT Pros. The license allows for the non-production use of Veeam Availability Suite v9.5 in your home lab, without any feature limitations. It works for both VMware and Hyper-V environments

Tackle projects and never again get stuck behind a technical roadblock.
Join Now