Have you tried the "RestrictAnonymous=2" setting for IPC$ enumeration? It still allows for most communications required within a Win2000 networked environment, But will reject an anonymous IPC$ session creation (i.e. - net use \\x.x.x.x\ipc$ ""/user:""). I believe the only other way to eliminate IPC$ without removing NetBIOS functionality completely is within the registry, I am not sure of the exact key. Keep in mind that if you disable IPC$ within an AD/Domain environment, you may start to see communication issues with respect to logon, exchange connection, etc.
JP -----Original Message----- From: Demitel [mailto:[EMAIL PROTECTED]] Sent: Thursday, June 27, 2002 11:31 PM To: [EMAIL PROTECTED] Subject: Re: Re: IPC$ blocking hi if stop the Server service or stop by firewall ports 139 and 445, it stops ALL shares, but i need to deny only IPC$ share. any tips? system is win2k. -- Demitel mailto:[EMAIL PROTECTED]
