Vulnerabilities
Misconfiguration
Runtime Security
Compliance
Google > VPC Network >

Open NetBIOS

HIGH
Source
CloudSploit
ID
open-netbios
management console

Open NetBIOS

Determines if UDP port 137, 138 or 139 for NetBIOS is open to the public

While some ports such as HTTP and HTTPS are required to be open to the public to function properly, more sensitive services such as NetBIOS should be restricted to known IP addresses.

Follow the appropriate remediation steps below to resolve the issue.

  1. Log into the Google Cloud Platform Console.

  2. Scroll down the left navigation panel and choose the “Networking” to select the “Firewall rules” option under the “VPC network.”Step

  3. On the “Firewall rules” page, select the “Firewall rule” which needs to be verified. Step

  4. On the selected “Firewall rules”, if UDP port 137 or 138 for “NetBIOS” are open to the public then the selected “Firewall rule” is not as per the best standards. Step

  5. Repeat steps number 2 - 4 to verify another “Firewall rule” in the network.

  6. Navigate to “VPC network” and choose the “Firewall rules” option under the “Networking” and select the “Firewall rule” which needs to be restricted to known IP addresses.Step

  7. On the “Firewall rules” page, click on the “Edit” button at the top and under the “Source IP ranges” enter the IP addresses as per the requirements.Step

  8. Click on the “Save” button at the bottom to make the changes.Step

  9. Repeat steps number 6 - 8 to restrict UDP ports 137 and 138 to known IP addresses.

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use