Hello!
I configure my firewall to drop local windows share.
I drop the 137-138-139-445 tcp/udp port!
add chain=input protocol=udp dst port=137 action=drop
add chain=input protocol=tcp dst port=137 action=drop
The examples not work,my client show the shared folder!
What`s the problem?
How to block the broadcast message the network?
Thanky you for help!
you have to chose correct chain - imput chain is incoming data TO ROUTER, if you want to filter data going through you have to choose forward chian.
Janisk You have msn account?
Plese send your nick mail address my mail address!Thx
kapulanwormuwpointhu
Also I would recommend always using the REJECT action over the DROP.
Drop silently drops packets and will cause the application to retry several times until the connection timeout is hit (around 60seconds I believe). Reject will drop the packet and send back an ICMP control message and close the connection immediately. You can choose which control message to send to the remote host.
There is no security benefit to using drop over reject, or vise versa. It just closes the connections more quickly and allows you to identify if an application is being dropped by the firewall because the connection will close quickly instead of timing out.
For some reason this is not working…i have the foward chain set, but its still only dropping traffic coming in and windows file sharing works intranetwork…
Here is the logic problem i have with this: If i Transfer a file like this via two machines on my network the file will move at ~ 80mbit…nothing going through the router all through the switch…I can even remove the router and the file transfer will keep going… So why would these packets be going through the router either?
which explains why no matter what i do on my router i cant stop windows domain browsing or moving of files intra-network.
infact i dont see how this would EVER work for anyone who has clients plugged into a switch.
please tell me where im wrong bc i doubt this is not working for ppl.
Obviously this will only apply to traffic going through the router. It is not magic and going to stop traffic between two machines connected to a switch.
Blocking the ports at the each AP is working and stopping file traffic.
We are about to put a 532 at a 35 unit complex where there are 3 switches uplinked to each other. Is the only way to isolate Windows sharing is via a VLAN for each unit? or is there something i can do at the router? all units will be masq behind a 192.168.
tks