Hi! I run a dual stack setup. Assumption : ports 135 and/or 445 are needed for file sharing. I want to be able to use file sharing over IPv4 on my local net, but want to disable the ports 135, 445 (and 1026 too, the lsass.exe port) on IPv6. They both run on the same interface (ethernet card). Is this possible ? (if the above assumption is wrong, then I will just disable these ports for both protocols) Thanks and regards, David
The OS is Windows 2003 SP2
david.balazic@hermes-softlab.com wrote: > Hi! > > I run a dual stack setup. > > Assumption : ports 135 and/or 445 are needed for file sharing. > > I want to be able to use file sharing over IPv4 on my local net, but > want to disable the ports 135, 445 (and 1026 too, the lsass.exe port) > on IPv6. They both run on the same interface (ethernet card). > > Is this possible ? You can try to 'unbind' the protocol. Go to: Network Connections, then in the menu "Advanced" and there "Advanced Settings...", you will there have the option to select (add/remove) protocols per adapter to be bound to a provider. Providers are "Client for Microsoft Networks" and "File and Printer Sharing for Microsoft Networks" (and possibly others). The former allows you to browse other computer shares, the latter allows others to reach your shares. Thus, you could remove IPv6 from the binding to the latter Provider (File and Printer...) and then it should not listen on IPv6 any more. In every other case: you can always firewall stuff away (netsh int ipv6 -> firewall) Greets, Jeroen
I did that already, but the ports are still bound to IPv6. David
