Hi,
I'm working on a old 3rd party app installed on a Win10 Pro machine that requires SMB 1.0/CIFS (aka simply "SMB" in this thread) to read data from a USB stick that resides in a router.
Question 1 : If I enable SMB in Win10, but don't specifically open SMB ports on the router (ie. port forwarding to the Win10's static IP) to allow traffic to enter from the WAN, is the Win10 Pro PC relatively safe with this setup?
Additionally, for extra safety on that Win10 PC, I could also create/modify a Win10 firewall rule for SMB and limit the scope to just the router's IP (where the USB stick resides). I'd do that just in case some other PC on the same LAN subnet enables SMB for nefarious purposes to try to access the Win10 PC.
Question 2 : Would this firewall rule be necessary or even advised?
Although not the topic of this thread please, one possible pitfall here involves hackers using UPnP to open ports on routers. If interested in those details, see here
[hackers-are-opening-smb-ports-on-routers-so-they-can-infect-pcs-with-nsa-malware][1]
Btw, I have already disabled UPnP on the router.
I appreciate your thoughts and comments on the two questions above.
Regards . . .