Event banner

Next-generation SMB file services

Event Ended
Tuesday, Mar 26, 2024, 12:30 PM PDT
Online

Event details

Radical changes are coming to the Server Message Block (SMB) and file services in Windows Server 2025 and Windows 11. Learn about new security behaviors, new functionality, and new scenarios availabl...
Char_Cheesman
Updated Dec 27, 2024
mrebrink's avatar
mrebrink
Copper Contributor
Mar 26, 2024
With Quic SMB share connection from the "coffeeshop" , how does this connect through firewall ? or does this use reverse proxy or something ?
NedPyle's avatar
NedPyle
Bronze Contributor
Mar 26, 2024
Firewall has to allow (by default) inbound 443 UDP to the file server.
  • mrebrink's avatar
    mrebrink
    Copper Contributor
    Mar 26, 2024

    yes that is the firewall for the server itself, but if this server is in my private datacenter, how does this connect with the outside world without a VPN on the client. I would need some external FQDN or IP adres and port mapping in edge firewall ?

    • NedPyle's avatar
      NedPyle
      Bronze Contributor
      Mar 26, 2024
      Yes, you'd need an FQDN the client can access and specified in the server certificate, and the file server reachable via port-forwarding/edge firewall/DMZ, etc.
      • Karl-WE's avatar
        Karl-WE
        MVP
        Mar 26, 2024
        haven't tried it yet, can we use a public cert or a custom DNS Name, too, or does the cert have to contain the AD DNS FQDN? Just thinking loud if people would rather obfuscate the server DNS name. And a last bit, is there a support of SMB QUIC for targets using DFS Namespaces (DFS-N) and how to accomplish that, as usually the DFS-N servers are different from fileserver targets. TYVM.
Date and Time
Mar 26, 202412:30 PM - 1:30 PM PDT