Marcel P. wrote:
> Read here about how ports 137 - 139, 445 are common attack ports from
> hackers. In online armor I see those ports had rules to allow them so I
> removed those rules and made a rule to block 137-139, 445 in/out TCP/UDP.
> Was that a good rule to make or just a waste of time?
Allowed those ports WHERE? You never mentioned what OA's rules actually
said. Maybe they allowed access to ports only on your intranet (i.e.,
all your hosts with 192.168.x.x since those IPs are not routable).
Plus, if you're using a router, it probably has rules to block those
ports from outside connections. If you have a router and its firewall
is already protecting you from external connects on those NetBIOS ports,
do you still need to protect yourself from hosts inside your own private