---------- Forwarded message ----------
Date: Tue, 3 Dec 1996 10:07:36 -0500 (EST)
From: Peter Yau <pyau @
To: FireWalls @
Subject: NetBios over IP
Are there security concerns for NetBIOS over IP? Is it a danger that because
it is a messaging protocol which uses names as opposed to addresses that it'd
be more easy to spoof?
With NetBIOS encapsulated in IP traversing (from outside) the FW-1, are
we only abled to filter on IP only? Once IP filtering takes place, the
packet then gets unencapsulated before it gets sent to its final destination?
The proper port needs to be open in FW-1 to accomodate NetBIOS, of course.
Where exactly does unencapsulation take place, at the last Router hop
prior to the final destination?
Thanks in advance.