Windows network shares still visible (and accessible) with "file and printer sharing" deactivated
Alright, so this guy's troubleshooting basically provided the solution:
Why is file sharing over internet still working, despite all firewall exceptions for filesharing being disabled?
He states:
It's the "built-in" rules for Terminal Services that was the problem. Can you believe port 445 (File Sharing Port) has to be wide open to the internet to use Terminal Services Licensing?)
So in my case, it wasn't anything terminal service related, but the following two rules, that were allowing traffic through port 445 TCP:
- Remote Access Management (NP-In)
- File Server Remote Management (SMB-In)
Disabling those two firewall rules finally made all shares invisible and inaccessible. Though in the end, I am going to stick with my explicit blocking rules after all, since it is obvious now that a lot of different services are using this ports functionality. And I don't want to have to remember to recheck the accessibility of the shares every time I reconfigure something somewhere in the system.