Configuring ER605 for windows file sharing

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Configuring ER605 for windows file sharing

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Configuring ER605 for windows file sharing
Configuring ER605 for windows file sharing
2023-05-04 22:04:40
Tags: #NAT
Model: ER605 (TL-R605)  
Hardware Version: V1
Firmware Version: 1.1.1 Build 20210723 Rel.64608

I need to access windows shared files that are located in a file server connected to a LAN. That LAN is connected to the internet through a TL-R605 router/firewall. The client computers will be located in a diferent network over the internet.

 

I am trying to configure te NAT/Virtual Server in the router to allow Windows File Sharing packets to pass through. To do that we have created to virtual servers in the router to map WAN port 445 to the required file server IP address using the same local port 445. The same rule for port 139.

 

The configuration looks like this:

 

However no file sharing packets arrive to the 445 port in the file server. The firewall in the file server has inbund rules allowing file sharing on every network profile and for any client ip address.

 

Monitoring the incoming packages in the file server there is nothing arriving to the port 445 that comes from the WAN.

 

How can I fix this?

 

  0      
  0      
#1
Options
1 Reply
Re:Configuring ER605 for windows file sharing
2023-05-04 23:44:28 - last edited 2023-05-05 06:01:00

  @adolfom  you have to use VPN. Port 445 is blocked by internet serviceprovider. 

 

And thats why.

 

Ports on the Internet are like virtual doors that data can pass through. All Internet traffic passes through ports to get to and from systems and services across the Internet.

When a certain port is known to be subject to security vulnerabilities, we sometimes block that port on our network.
These ports are blocked at a network level. Traffic over these ports within your local network will continue to operate as normal but will be inaccessible over these ports to devices outside of your network.

Blocked Ports

TCP & UDP ports 135, 137,138 – Used by the NetBIOS service
NetBIOS services allow file sharing over a local network. When exposed to the Internet, it can be exploited to carry out malicious activities such as Distributed Denial of Service (DDoS) attacks or to gain unauthorised access to systems on a local network.

TCP & UDP port 445 – Used by the SMB protocol
Port 445 is vulnerable to a number of attacks which target vulnerabilities in systems running file-sharing services. This port is used by various malware strains to gain entry to a network, namely the WannaCry and Nimda malware variants.

  0  
  0  
#2
Options