https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174830#M31839 <P>CIFS is largely handled in the firewall, which doesn't make it a good candidate for pioneering the use of App Control.&nbsp;</P> Tue, 14 Mar 2023 23:13:21 GMT PhoneBoy 2023-03-14T23:13:21Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174807#M31827 <P>I am putting together in initiative to pioneer the use of app control.&nbsp; I see a lot of CIFS TCP Port 445 traffic I would secure.&nbsp; I only see CIFS TCP Port 445, but I dont see anything at layer 7.&nbsp; The goal is to implement layer 7 firewall rules.&nbsp; Secondarily would be ports 135, 137, 138, and 139. NetBios.</P> Tue, 14 Mar 2023 17:00:42 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174807#M31827 love-cw 2023-03-14T17:00:42Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174822#M31833 <P>Have you looked at SMB in the AppWiki?</P> <P>sk101606 also provides additional detail on the deeper inspection possible for CIFS / SMB.</P> Tue, 14 Mar 2023 22:47:02 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174822#M31833 Chris_Atkinson 2023-03-14T22:47:02Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174830#M31839 <P>CIFS is largely handled in the firewall, which doesn't make it a good candidate for pioneering the use of App Control.&nbsp;</P> Tue, 14 Mar 2023 23:13:21 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174830#M31839 PhoneBoy 2023-03-14T23:13:21Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174832#M31841 <P>I see the point Chris is making, since CIFS is sort same as SMB, so it would also use tcp port 445 and UDP ports 137 and 138 if I recall correctly. I will see if I can find anything in my R81.20 lab.</P> Tue, 14 Mar 2023 23:24:01 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/174832#M31841 the_rock 2023-03-14T23:24:01Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/175025#M31877 <P>Damian is correct, the port is secured by the SMB protocol.&nbsp;&nbsp;</P> Wed, 15 Mar 2023 17:42:52 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Looking-for-a-Application-for-CIFS/m-p/175025#M31877 love-cw 2023-03-15T17:42:52Z