Windows network shares still visible (and accessible) with "file and printer sharing" deactivated

windows windows-firewall windows-server-2012-r2 network-share

Alright, so this guy's troubleshooting basically provided the solution:

Why is file sharing over internet still working, despite all firewall exceptions for filesharing being disabled?

He states:

It's the "built-in" rules for Terminal Services that was the problem. Can you believe port 445 (File Sharing Port) has to be wide open to the internet to use Terminal Services Licensing?)

So in my case, it wasn't anything terminal service related, but the following two rules, that were allowing traffic through port 445 TCP:

  • Remote Access Management (NP-In)
  • File Server Remote Management (SMB-In)

Disabling those two firewall rules finally made all shares invisible and inaccessible. Though in the end, I am going to stick with my explicit blocking rules after all, since it is obvious now that a lot of different services are using this ports functionality. And I don't want to have to remember to recheck the accessibility of the shares every time I reconfigure something somewhere in the system.

Related

Samba server icon on the mac is still the ugly CRT monitor despite the seemingly correct settings
A valid Root CA Certificate could not be located, the certificate will likely display browser warnings
source venv/bin/activate isn't returning anything on CentOS
QNAP QTS v5 OpenVPN to Wireguard server migration
How to make Outlook Calendar reminders stay on top in Windows
Trying to redefine a mapped network drive in place
Can DisplayPort 1.2 support 10-bit (8+2FRC) color at 1440p and 144hz?
How to disable the 10 minute screen timeout/lock in KDE?
How do I run vino-server without a monitor attached in Ubuntu 10.04
Make ssh:// links open with PuTTY
Want Chrome browser to ask for certificate each time
Move the last word of each line to be right aligned