Select or create the policy that you want to edit. NOTE: The Endpoint Protection Default Policy cannot be modified. Either save a copy of this policy, or click Add Policy to create a new policy to modify.
Scroll down to "Network Protection" and click the "+ Firewall Rules" to expand the rules section.
Click Add rule. (There will also now be a built-in rule "Allow File and Printer Sharing" visible. While this rule can be enabled, this does not open both ports required for this situation.)
Name the rule appropriately.
Under Connection set the drop down menu to "Allow".
Under Connection Type set the drop down menu to "Inbound".
Under Computers choose either "Any Computer in the Local Subnet" or "Choose Computers" and select the appropriate range of systems to be added.
Under Communications choose either "TCP" or "TCP and UDP" in the first drop down menu item.
Choose "Custom List" in the second drop down immediately under the first.
Click "Click to View List" to reveal a list of well-known port numbers.
From this list of well-known ports, select both ports 139 (NETBIOS Session Service) and 445 (Microsoft Directory Services).
Scroll down and select the group or groups that this policy will apply to.
Click the Save & Apply button.
The policy will now be distributed to all clients currently online and connected to the web portal manager. Once the policy distribution is complete, attempt to connect to the mapped drive, or access the printer.
If issues persist after creating and distributing this policy, isolation troubleshooting would be called for to verify that this is an issue with the SEP SMB cloud firewall. Please refer to TECH216423 for steps to disable the SEP SMB cloud firewall for troubleshooting purposes.
Subscribing will provide email updates when this Article is updated. Login is required.
Thanks for your feedback. Let us know if you have additional comments below. (requires login)
Subscribed to the Article.
Unable to subscribe
Thanks for your additional feedback !!!
Enterprise Support Virtual Agent
Rate Me :
Tell us more:
Welcome! My name is Sami, the Enterprise Support Virtual Agent answering technical support questions.