Windows 2000 下关闭 Netbios 的方法

    There are four default ways to block NetBIOS \ CIFS on a Windows 2000 system.

    1) Advanced TCP/IP filtering
    Located: Control Panel - Network - Internet Protocol (TCP/IP) Properties -
    Advanced - Options - TCP/IP Filtering Properties
    Use: Permit Only specific protocols.  Do Not permit tcp (protocol 6) ports
    139 or 445
    Pro: ports 139 and 445 will not respond to a port scan
    Con: Permit Only mechanism means you have to specify each allowed protocol,
    including RPC ports.  (also: ICMP will be permitted even if you specify to
    ’permit only’ and leave permitted fields blank)
    Reboot Required?: YES

    注意：此方法不适合于初学者，因为如果你不熟悉Windows 2000下端口分布的话，很容易导致机器许多功能的屏蔽。

    2) IPSecurity Filtering (Has nothing to do with IPSec)
    Located: Control Panel - Administrative Tools - Local Security Policy -
    IPSecurity Policies
    Use: Define a rule for destination ports tcp139 and 445 from any source
    port / source address to ’My IPAddress’.  Create and assign a blocker rule
    to this filter.
    Pro: ports 139 and 445 will not respond to a port scan.  Filters are
    granular per protocol, and source and destination ports and addresses.
    Con: Tricky to setup the first time.  Blocker rule must be manually defined
    Reboot Required?: NO

    注意：使用IPSec的方法很棒，推荐使用，而且如果客户端访问你共享的机器支持IPSec的话，丝毫不受影响（有点夸张）。

    3) Disable NetBIOS over TCP/IP
    Located: Control Panel - Network - Internet Protocol (TCP/IP) Properties -
    Advanced - WINS
    Use: Click radio button to “Disable NetBIOS over TCP/IP“
    Pro: tcp 139 will not respond to port scans
    Con: tcp 445 will still accept connections and process NetBIOS
    Reboot Required: NO
    **WARNING: This method instills a false sense of security and should not be
    used as tcp 445 is still open and will accept connections**
    注：这种方法不是很顶用，恶意攻击者还是可以取得你服务器的用户列表，不过你还可以通过修改注册表的方法来防止。

    4) Unbind File and Printer Sharing for Microsoft Networks
    Located: Control Panel - Network  - Advanced (from menu bar) - Advanced
    Settings
    Use: Select Network Card to unbind NetBIOS - Uncheck File Sharing for
    Microsoft Networks
    Pro: Will disable all incoming requests to tcp 139 and 445
    Con: tcp 139 will appear on a port scan, but will not respond to requests
    Reboot Required: NO
    注意：该方法不大好，因为人家无法访问你的共享，我喜欢共享...

    还有几种是我的方法：
    5) 停止Server服务
    Lcated: 服务管理器
    Use： 关闭Server服务
    Pro： 什么端口都不会关
    Reboot Required: No
    注意：关闭了该服务会导致很多相关的服务无法启动，如IIS中的一些服务，不推荐该方法，而且登陆域的时候会出现问题。

    6) 使用防火墙软件
    安装后默认就关闭了你的共享，当然，你也可以通过封端口来实现。