Shepherd Kwashiwa
asked on
Block open ports
I want to block open ports e.g 445 on my windows server 2012 R2 server. I have tried to follow the procedure of adding an inbound rule in windows firewall advanced settings but when I run nmap the report still shows port 445 as open. is there another way of blocking/disabling the port
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I agree with Cliff and here is a supporting article.
https://support.symantec.com/en_US/article.TECH88796.html
In there is a link to a Microsoft Support article. You probably do not need to close unless you allow for all the possibilities of it being closed.
https://support.symantec.com/en_US/article.TECH88796.html
In there is a link to a Microsoft Support article. You probably do not need to close unless you allow for all the possibilities of it being closed.
No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I have recommended this question be closed as follows:
Accept: Cliff Galiher (https:#a42351345)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer
I have recommended this question be closed as follows:
Accept: Cliff Galiher (https:#a42351345)
If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.
seth2740
Experts-Exchange Cleanup Volunteer
Open up cmd as "Run as administrator."
Type in the following:
netsh advfirewall set allprofile state on <Enter>
netsh advfirewall firewall add rule dir=in action=block protocol=TCP localport=445 name="Block_TCP-445" <Enter>
You can also do it via registry:
Navigate to HKEY_LOCAL_MACHINE\SYSTEM\
Right click the blank area and select New. Select DWORD (32-bit) Value.
Call it SMBDeviceEnabled. Modify it, and change Value data from 1 to 0
and then disable the Windows Server service