CSA 6.0.1 File and Print Services

Unanswered Question
Jul 28th, 2009
User Badges:
  • Silver, 250 points or more

We are trying to restrict File and Print sharing access to specific hosts by IP. The struggle is with figuring out which rule modules are required in order for that to happen.


We have created the necessary Network access control based on the following TCP/UDP ports TCP 135-139, TCP 445, UDP 135-139, and UDP 445 that are required for mapping a file share.


What else in addition is required for seamless access to file and print services?


We have noticed that there are operations being denied when attempting to access the registry.


Thank you in advance and please let me know if I can provide more details.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
pmccubbin Tue, 07/28/2009 - 07:43
User Badges:
  • Silver, 250 points or more

Got it figured out. Sometimes the solution appears once you have framed the situation as a question.


Solution: We created a Network access control rule to allow SMB null sessions for authorized hosts and that did the trick.



Actions

This Discussion