Hello, I was wondering if it was at all possible to block SMB over the network using ACL's. Currently all I'm looking to try and do is block the separate windows machines from discovering each other on our "public" network. I have done some research and found some protocols that could be blocked however no matter how many protocols I block with an ACL it still gets through and the PC's can still find each other and share files and folders. If anyone could at least point me in the right direction that would be much appreciated.
More aboutblocking network
I have figured it out. It seems that it took a Protocol Code-Type ACL in order to block NetBIOS from getting even to the access point itself.
SMB works over very specific ports, there's more than 1 port. If you block them, SMB shouldn't work. ACL should work.
That's what I thoguht but it's as if it just bypasses the ACL on some ports, that or it's using dynamic ports in which case I was screwed either way.