From owner-freebsd-questions  Sun Feb 21  8:19:24 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from hotmail.com (f84.hotmail.com [207.82.250.190])
	by hub.freebsd.org (Postfix) with SMTP id 5A9EC10E6E
	for <freebsd-questions@FreeBSD.ORG>; Sun, 21 Feb 1999 08:19:22 -0800 (PST)
	(envelope-from raha49@hotmail.com)
Received: (qmail 17346 invoked by uid 0); 21 Feb 1999 16:19:21 -0000
Message-ID: <19990221161921.17345.qmail@hotmail.com>
Received: from 195.96.144.201 by www.hotmail.com with HTTP;
	Sun, 21 Feb 1999 08:19:21 PST
X-Originating-IP: [195.96.144.201]
From: "Nana Ni." <raha49@hotmail.com>
To: cjm2@earthling.net
Cc: freebsd-questions@FreeBSD.ORG
Subject: RE: UDP/TCP Ports 137, 138, 139
Date: Sun, 21 Feb 1999 08:19:21 PST
Mime-Version: 1.0
Content-type: text/plain
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

Dear Chris, 

You're right, I must explain the case much clearly.  Actually, I want to 
block any packet with source or destination port equal to 137, 138 or 
139 from coming in or going out of our intranet. It will be done  on our 
firewall which is IPFW on FreeBSD. So Netbios connections will be 
allowed inside our Intranet, but be denied from/to go out/come in. 
I'd like to get sure that it doesn't make any restriction for existing 
services. 

Thanks,
Nazila 

>
>Yes you could just block incoming connections from your firewall on 
these
>ports.  Although reading your message I'm not sure I understand exactly 
what
>you want to block.  Are you intending on blocking netbios connections 
coming
>from an outside network to an inside network, or are you just blocking 
these
>connections to the FreeBSD machine?
>-Chris
>
>-----Original Message-----
>From: owner-freebsd-questions@FreeBSD.ORG
>[mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Nana Ni.
>Sent: Sunday, February 21, 1999 12:54 AM
>To: freebsd-questions@FreeBSD.ORG
>Subject: UDP/TCP Ports 137, 138, 139
>
>
>Hi,
>
>I've read that UDP/TCP ports 137-139 which are used for NetBios, can be
>some security threats to system. Does anybody knows if I can block at
>least incoming this kind of packets on firewall without making any
>restrictions for Windows (NT/95) PCs?
>
>Thanks,
>Nazila N.
>


______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message