"Thor Kottelin" wrote:
> "VanguardLH" wrote ...
>
>> The Messenger service is unusable to send alerts beyond a network
>> segment. They aren't routable which means they won't get outside
>> the user's own network.
>
>> almost if not all firewalls will block port 135, 137, 138, and 139
>> traffic.
>
> Such firewall rules are advisable precisely because NetBIOS over TCP/IP
> *is* routable.
Looks like we're getting picky here or the confusion between NetBIOS and
NetBEUI and NBT continues today.
http://www.answers.com/topic/netbios
Okay, so even if we talk about NetBEUI, the typical setups today will
have software and router firewalls blocking the related ports plus the
ISPs block it. So while you can use NetBEUI as a transport protocol
within your own network, it's not getting out or in from your ISP. That
is now. Back when ISPs weren't blocking NetBEUI ports was when you'd
get those attacks of someone trying to puke up an alert window on your
screen. How long ago would that be now? Yeah, it might be routable but
it's not getting far these days.
NetBIOS/NetBEUI is not routable.
(
http://www.ehow.com/list_5924590_types-non_routable-protocol.html)
NetBIOS Frames (NBF) is also non-routable.
(
http://en.wikipedia.org/wiki/NetBIOS_Frames_protocol).
NetBIOS over TCP/IP (NBT) that encapsulates NetBIOS messages inside TCP
datagrams is routable.
(
http://en.wikipedia.org/wiki/NetBIOS_over_TCP/IP)
http://technet.microsoft.com/en-us/library/cc758517(v=ws.10).aspx
- "NetBIOS defines a software interface and a naming convention, not a
protocol."
- "NetBEUI is a small, fast protocol with no networking layer; thus, it
is not routable and is not suitable for internetworks. NetBEUI relies
on multicasts for name resolution and location of services."
- "NetBIOS over TCP/IP provides the NetBIOS programming interface over
the TCP/IP protocol, extending the reach of NetBIOS client and server
programs to the WAN"
So what does the "net send" command generate? What does the Messenger
NT service use? So far, all I've found about it is that it uses NetBIOS
and that's not routable (or even a networking layer protocol). If it
used NBT then it would be routable. If you right-click on your LAN
connectoid in the Network applet in Control Panel, look at Properties,
select the TCP/IP protocol and look at its properties, go to Advanced,
and go under the WINS tab, it's likely you are using the Default
setting. Likely the default is to enable NetBIOS over TCP (NBT).
I really doubt Pete, on his end or wherever are the web cameras, is
using an ISP that haven't already killed NBT. Maybe if he had a
business account and could request specific IP addresses to be allowed
NBT connections then he'd also have to get any routers reconfigured to
their firewalls don't block the above mentioned ports and then also
configure any software firewalls running on the hosts to also not block
those ports.
And then he'll have to ensure the Messenger NT service is configured for
Automatic startup and loads okay. The 2002 rash of spam popups
(
http://en.wikipedia.org/wiki/File:Netspam.gif) and a Microsoft alert in
2003 (
http://technet.microsoft.com/en-us/security/bulletin/ms03-043) had
users disabling the Messenger NT service and updating their firewall
rules (which later became standard rules included in the install of
firewalls). Then as of Service Pack 2 for Windows XP the Messenger NT
service got disabled by default.
So Pete would need to somehow overcome the default blocking of NBT and
the NetBIOS ports employed by all ISPs. Then he would have to make sure
any router, its firewall, or any software firewalls on the hosts don't
block NBT or those ports. Then he needs to ensure the target host has
the Messenger NT service configured for Automatic startup and that it
loads successfully on Windows startup. He has to make sure the endpoint
hosts using NBT are configured in their TCP/IP properties to allow NBT.
Good luck with that.