Tuesday, April 7, 2026
Latest:
Computer

SMB Ports 139 and 445 Explained with Quick Security Steps

admin


XINSTALL BY CLICKING THE DOWNLOAD
FILE

A message from our partner

For fixing Windows errors, we recommend Fortect:

Fortect will identify and deploy the correct fix for your Windows errors. Follow the 3 easy steps to get rid of Windows errors:

  • Download Fortect and install it on your PC
  • Launch the tool and Start scanning your PC for Windows errors
  • Right-click on Start Repair to deploy the right fix for each error encountered during the scan

XINSTALL BY CLICKING THE DOWNLOAD
FILE

A message from our partner

Fix Windows 11 OS errors with Fortect:

  • Download Fortect and install it on your PC
  • Launch the tool and Start scanning to find broken files that are causing the problems
  • Right-click on Start Repair to fix issues affecting your computer’s security and performance

SMB ports 139 and 445 are essential for file and printer sharing across Windows networks. However, these same ports are often exploited by attackers, making it important to understand how they work and how to secure them effectively. This guide explains their differences, how to check their status, and steps to disable or protect them on Windows 11.

All You Need to Know About SMB Ports 139 and 445

What Are SMB Ports 139 and 445

SMB is a network file sharing protocol used by Windows systems to share files, printers, and other resources. Two ports are primarily associated with SMB communication: Port 139 and Port 445.

  • Port 139: Used by SMB over NetBIOS in older stacks such as SMBv1.
  • Port 445: Used by SMB directly over TCP in modern versions such as SMBv2 and SMBv3.

Learn how to open ports in Windows Server if you need to manage SMB access in a server environment.

Why Are SMB Ports 139 and 445 Important

These ports enable file and printer sharing, authentication with Active Directory, and remote administration. They also introduce risk if exposed on public or untrusted networks because they are frequent targets for malware and ransomware.

How to Check If SMB Ports 139 and 445 Are Open

1. Using Command Prompt

Use Command Prompt to quickly see if the ports are listening.

  1. Press Windows + R, type cmd, and press Enter.
    run cmd
  2. Type netstat -an | find “139” and press Enter.
  3. Type netstat -an | find “445” and press Enter.
  4. Look for LISTENING to confirm the port is active.

2. Using PowerShell

PowerShell provides a targeted connectivity test for each port.

  1. Open PowerShell as Administrator.
  2. Run Test-NetConnection -ComputerName localhost -Port 445
  3. Review the output to confirm whether the port is open or blocked.

If the ports appear blocked, check whether Windows Firewall is the cause by following this guide on how to tell if Windows Firewall is blocking a port or program.

How to Disable SMB Ports 139 and 445

1. Turn Off SMBv1 for Port 139

Disable SMBv1 to remove legacy exposure.

  1. Open Control Panel then select Programs and choose Turn Windows features on or off.
  2. Uncheck SMB 1.0/CIFS File Sharing Support.
  3. Click OK and restart the PC.

2. Disable SMBv2 and SMBv3 for Port 445

Use PowerShell to disable modern SMB versions if absolutely necessary.

  1. Launch PowerShell as Administrator.
    Powershell run as administratorPowershell run as administrator
  2. Run Set-SmbServerConfiguration -EnableSMB2Protocol $false
  3. Restart the computer to apply changes.

Note: Disabling SMB can break file sharing and domain authentication. Only proceed if your environment does not rely on SMB.

How to Secure SMB Ports Without Disabling Them

If your network depends on SMB, harden the service rather than turning it off. Proper firewall rules and strong authentication significantly reduce risk.

  1. Restrict SMB to trusted IP ranges using a firewall.
  2. Enable SMB signing to verify message integrity.
  3. Keep Windows and SMB protocol components updated.
  4. Disable guest access and enforce strong authentication.

For granular control, follow this guide to open firewall ports safely in Windows and configure SMB securely.

FAQs

What are SMB ports used for

They are used for file and printer sharing, authentication, and remote access between Windows devices.

Should I block ports 139 and 445

Yes, block them on public or untrusted networks and keep them open only on secured private LANs.

What happens if I disable SMB

File and printer sharing may stop, and domain logons can fail in networked environments.

Is SMBv1 still safe to use

No. SMBv1 is outdated and insecure and should be disabled due to known exploits such as WannaCry.

Final Thoughts

SMB ports 139 and 445 are vital for Windows networking but can expose systems if misconfigured. If you rely on file sharing, secure these ports with tight firewall rules and strong authentication. If you do not need SMB, disabling it is the safest option.

Milan StanojevicMilan Stanojevic

Milan Stanojevic
ShieldShield

Windows Toubleshooting Expert

Milan has been enthusiastic about technology ever since his childhood days, and this led him to take interest in all PC-related technologies. He’s a PC enthusiast and he spends most of his time learning about computers and technology.

Before joining WindowsReport, he worked as a front-end web developer. Now, he’s one of the Troubleshooting experts in our worldwide team, specializing in Windows errors & software issues.


Readers help support Windows Report. We may get a commission if you buy through our links.
Tooltip IconTooltip Icon

Read our disclosure page to find out how can you help Windows Report sustain the editorial team. Read more



Source link

You May Also Like

Cloud storage payment scam floods inboxes with fake renewals

admin

Fast 1440p LG OLED price plummets to one of its lowest in an Amazon deal

admin

WiFi Gets Moar Power – PC Perspective

admin