Re: Shared drives through a firewall

I am trying to persuade a client NOT to map a drive through two firewalls to
an untrusted server in a DMZ to run an application. I've tried Googling
Netbios and security, but get so many entries as to be useless.
Other than the latency issues, and my ten cents that it seems to me to be an
enormously foolish idea, can you folks offer me any further ammunition?

Here is your silver bullet: it won't work :)

The SMB+NetBIOS+TCP/139 protocol is not NAT aware.

So unless your client is using public IP addresses internally, it will
just fail.

Regards,
- Nicolas RUFF

Relevant Pages

  • Re: how to shut off netbios-ns/port:137 (udp)
    ... m/freeDownload.jsp Actually the built in security policy ... is capable of blocking netbios attacks but as the previous ... Settings -> Security Settings. ... security rule consists of two key components: an IP filter ...
    (microsoft.public.security)
  • Re: Security Groups from VPN
    ... security groups for the user. ... The WinNT provider requires the NetBIOS name of the domain. ... Dim dictionaryGroups ...
    (microsoft.public.scripting.vbscript)
  • Re: Security Groups from VPN
    ... security groups for the user. ... The WinNT provider requires the NetBIOS name of the domain. ... Richard Mueller ... Dim dictionaryGroups ...
    (microsoft.public.scripting.vbscript)
  • Re: Security Groups from VPN
    ... security groups for the user. ... The WinNT provider requires the NetBIOS name of the domain. ... I prompt the user for username and password and log into to the vpn ...
    (microsoft.public.scripting.vbscript)
  • Re: Audit Object Access
    ... object access can generate a lot of entries because W2K will do auto ... security policy for the effective setting under security options for "audit ... > Object Server: Security ...
    (microsoft.public.win2000.security)
Quantcast