Legacy file-sharing methods, such as Microsoft SMB over TCP, often fail to meet the demands of remote access, especially when users need fast, secure, and reliable connectivity over the public Internet. SMB over QUIC overcomes these issues by replacing SMB’s legacy TCP transport with a more secure, resilient alternative.
But what exactly is SMB over QUIC, and how does it impact performance and user experience?
SMB over QUIC is a modern transport enhancement for the SMB (Server Message Block) protocol that allows secure, firewall-friendly file sharing over the internet. It combines SMB 3.1.1 with QUIC, a UDP-based, TLS-encrypted transport developed by Google and now standardized by the IETF.
- Encrypted SMB traffic by default (TLS 1.3)
- Firewall traversal without requiring port 445 (uses UDP port 443 instead)
- Remote access without VPN
- Improved performance on high-latency or unreliable connections
- DNS-based name resolution for share access
- Scripting and automation support via PowerShell
Key Benefits
| Features | SMB over QUIC |
| Transport Protocol | QUIC (over UDP 443) |
| Encryption | TLS 1.3 (mandatory) |
| Authentication | Kerberos or NTLM over a secure channel |
| VPN Required? | No |
| Port Required | UDP 443 (not TCP 445) |
| Client OS Support | Windows 11+, Windows Server 2022+ |
| Server OS Support | Windows Server 2022+, Azure File Shares |
Use Cases
- Secure file access from untrusted networks (hotels, coffee shops)
- Remote workforce access without VPN complexity
- Firewall-bypassing SMB scenarios (e.g., blocked TCP/445)
Limitations
- Only supports SMB 3.1.1
- No support for legacy SMB clients (Windows 7, Linux without QUIC support)
- Requires configuration of TLS certificates and QUIC endpoints
Example: Azure Files over SMB over QUIC
Azure supports SMB over QUIC with Azure Files (Premium Tier), making it possible to mount Azure shares securely over the internet without a VPN.
Move Faster
While SMB over QUIC improves security and simplifies access, it remains a centralized client-server architecture, which can limit scalability and complicate synchronization across multiple sites.
That’s where Resilio Active Everywhere–the new standard for high-performance data everywhere–takes a different approach.
Instead of relying on a central file server or cloud mount, it uses enterprise-ready peer-to-peer replication to sync files directly between endpoints across any network. This enables real-time, resilient file distribution at scale, without the bottlenecks of legacy protocols.
Try it out and see. Request a free business trial of Resilio Active Everywhere and discover how to future-proof your IT team with data movement designed for the speed and scale of a global enterprise.
