CIFS is very used in big corporate Windows environments, although authentication (generally relying on AD/Kerberos) is good and flexible, there is no built-in support for data transport encryption in CIFS…. bad :(.
One solution is to deploy two GPOs on the domain: one for the servers, one for the clients, for using “pin-point IPSec tunnelling” (like that one ^^) on ports 137,139,445 TCP and UDP between the specified servers/clients…. HEAVYYYY
Because I like trolls: The Samba free software project does transport encryption over SMB/CIFS since july 2008! Ready for the WOW effect now? 😉
BurgerMinds 
Pingback: wordpress