Re: Black Ice and smb

From: Duane Arnold (darnold92@Insightbb.com)
Date: 04/19/02 

From: "Duane Arnold" <darnold92@Insightbb.com>
Date: Fri, 19 Apr 2002 18:07:05 GMT

Well Zig,

I assumed that your router had a firewall and I assumed wrongly. I gave you
advise about BlackIce assuming you were behind a router firewall.

So if you have turned on the option Internet Sharing with BlackIce turn it
off, because your machines using MS File and Printer Sharing bound to the
TCP/IP protocol is making File and Printer Sharing on your server public and
open to other Internet users.

Because your router doesn't have a firewall, turning on MS File and Printer
sharing and telling BlackIce to do Internet Sharing on your server should
not be done, while your server is using the TCP/IP protocol.

Now if you want to use File and Printer sharing on your server with your
client machine, you will have to do it locally. And what I mean by locally
is the following:

1) On you network card properties on both machines install the NetBEUI
protocol
2) When you want to share resources between the two machines, turn off the
TCP/IP protocol on the server's network card.
3) With BlackIce on your server, turn on Internet File and NetBEUI sharing.

By doing those three steps, you can fully share resources between the
computers on the network, but your server is not exposed to the Internet
because it is not using TCP/IP. It is called local File and Printer sharing
using the NetBEUI protocol only. The other way is called global File and
Printer Sharing using TCP/IP.

I can get away with global, because I am behind a router that has a
firewall.

To stop the SMB block by BlackIce when BlackIce's Internet Sharing is turned
off, turn off File and Printer sharing on the client machine.

The other way to fix this is to get a router that has a firewall.

Duane

"Ziggi" <ziggizag@poczta.onet.pl> wrote in message
news:2f5776b.0204190653.a7cf40a@posting.google.com...
> Yeah !
>
> Thank you very much ! The only problem is... I am not behind two
> firewals. I don't understund why did you presume my router is a
> firewal ? No - in fact it's doing no packet filtering at all, so the
> only firewall is Black Ice - this is the case !!!
>
> I hope you'll read this - for whatever reason I can't send you an
> e-meil directly - "recipient unknown" error occurs.
>
> Ziggi

Relevant Pages

  • Re: firewalls (was Re: AGP)
    ... I am not as stupid as you think Eep. ... > use BlackIce properly or the opinions of BlackIce has been formed based on ... So, have you attempted to hack into my router yet, sport? ... I obviously know way more about firewall security than you, ...
    (comp.security.firewalls)
  • Re: semi-newbie question re firewalls/routers
    ... firewalls on each PC, because of system resource concerns, but I suppose I ... Any clue as to which SW firewall takes ... > each machine behind the router such as BlackIce Defender PC 3.5, ... I prefer BLackIce to the others. ...
    (comp.security.firewalls)
  • Re: firewalls (was Re: AGP)
    ... "BlackIce is crap". ... read Consumer Reports' firewall comparison article. ... > I haven't been hacked once since using either ZoneAlarm or my Linksys ... you don't have a firewall on the router. ...
    (comp.security.firewalls)
  • Re: Windows Firewall Configuration
    ... Check off the "File and printer sharing" option. ... I doubt the router would catch that scenario. ... > hardware firewall, is connected to the wireless router at one of the LAN ...
    (microsoft.public.windows.mediacenter)
  • Re: Port Probing
    ... you need to have more than BlackICE! ... NOT A FIREWALL! ... >> Try running another scanner, such as a web-based scanner like grc.com ...
    (comp.security.firewalls)
Quantcast