Community
- Command Central
- MVP Program
- Monthly Mission
- Blogs
- Groups
- Events
- Media Vault
Products
- Observability
- Network Management
- Application Management
- IT Security
- IT Service Management
- System Management
- Database Management
Content Exchange
- SolarWinds Platform
- Server & Application Monitor
- Database Performance Analyzer
- Server Configuration Monitor
- Network Performance Monitor
- Network Configuration Manager
- SQL Sentry
- Web Help Desk
Free Tools & Trials
Store

port 137

We are running Orion NPM and our security tools found that the server is constantly trying to talk to outside addresses via port 137. Does anyone know why NPM would need to talk using port 137 to the outside?

Find more posts tagged with

Accepted answers

All comments

davbyrd

This is more than likely attributed to NetBIOS

This is due to the behavior of Windows servers that use NetBIOS (as well as DNS) to resolve IP addresses to names using the "gethostbyaddr()" function.

This shouldn't be too big of a concern for you.

Yann

Hi AJ2,

You might want to disable the NetBios Over TCP/IP protocol on the interface and use the LMHOSTS file for the servers that needs to be resolved using NB names. That might be the case e.g. of the SQL Server.

You should no more have any NetBios Lookup Query trying to go through your firewall if you do so.

Some posts about the same issue:

HTH,

Yann