Can anyone please tell me how to disable tcp port 445 on a win2k system? * I have already disabled netbios under WINS but when doing a netstat -an it still shows port 445 open.
I enabled tcp filtering for now... but is there a better way?
Printable View
Can anyone please tell me how to disable tcp port 445 on a win2k system? * I have already disabled netbios under WINS but when doing a netstat -an it still shows port 445 open.
I enabled tcp filtering for now... but is there a better way?
You can use a firewall like Oupost at http://www.agnitum.com in order to "view" easily which service open this port and to block it.
TCP & UDP port 445 have the Microsoft-DS service running on them. Hope this helps.
I would recommend KissCool's suggestion if you are sure that you want to block the port, and also add a little more security with the Outpost firewall. However, if you are using Win2k, you may want to read some more info on the port before doing so. I am not sure if this will be of use to you since I didn't have enough information from your initial post, but I found a site that may be of some help here .
If you:
a) go to control panel->administrative tools->services
disable workstatation, computer browser, netbios helper, and/or server
(while you are there, if you are running remote registry nuke it)
b) go to control panel->network settings->select your LAN/dialup connection, hit properties, make sure only TCP/ip is enabled, under tcp/ip settings, make sure that netbios over tcp/ip is disabled
If you have done these, port 445 might be listening, but there is nothing there...(why that is I don't know, but if you try to do anything on it, it just sits there). I also agree with the above posts, it would also be good to consider getting some kind of a personal firewall, that will help you keep out people on all ports, not just 445.
There is also another option, one that I haven't used very often, but you can actually filter ports in NT/Win2k by going under advanced tcp/ip options, selecting security...you can actually put a port filter in there, but be really really careful how you do it...
Neb
http://www.microsoft.com/windows2000...2kservices.asp
Check that out, That shows a detailed listing of every service on the machine and its description....
And you say that when you do netstat the port still appears, Of course it will appear at localhost.... go to grc.com and go to shields-up! Let it do a scan and see if the port is open over the 'net =)
Hmmm...another place for services that I have found somewhat useful:
http://www.blkviper.com/WIN2K/servicecfg.htm
Hmm...netstat -an returning
*.*.*.* bound to port 445 tcp, Seeing as how I have disabled everything that uses it (win2k netbios), yeah it bothers me that something is listening to it...is there something that I am missing...or am I mistaken that if you have disabled a program that it should no longer be listening on that port ?
nebulus