Hi,
I was doing a remote port-scan to my RB3011 and the scanning tool reports various SMB-ports to be open ?!
I disabled SMB anyway on the Mikrotik
[jvanham@GATEWAY] /ip smb> /ip smb print
enabled: no
domain: WORKGROUP
comment: MikrotikSMB
allow-guests: no
interfaces: Bridge
[jvanham@GATEWAY] /ip smb>
It should not even “expose” to the outside-world, as I have “Bridged” selected as interface.
Still the scan reports …
111/udp open|filtered rpcbind
135/udp open|filtered msrpc
136/udp open|filtered profile
137/udp open|filtered netbios-ns
138/udp open|filtered netbios-dgm
139/udp open|filtered netbios-ssn
445/udp open|filtered microsoft-ds
I have an extreme simply setup, no vlan’s, simple policy with nothing inbound allowed that is not originated from the inside
I have created the FW-policy based on some examples from the forums etc.
1 single line of NAT
Don’t why specificly these MS-port are flagged…
Anyone seen similar?