Open ports to establish a one-way trust

From: Ju Ne (ddjjembe1_at_hotmail.com)
Date: 03/01/05

  • Next message: xyberpix: "Re: securing linux webserver?" 
    To: security-basics@securityfocus.com
Date: Tue, 01 Mar 2005 10:15:34 -0600

    We have a domain in our WAN that needs an Active Directory
    one-way trust established with our domain. The change has been made in
    Active Directory but we have been unable to test this new trust? What ports
    need to be opened at the firewall to allow this trust from a firewall
    perspective? Are any of the ports listed below required for this trust?

    TCP 135 – Microsoft RPC
    UDP 137 – Netbios-ns
    UDP 138 – Netbios-dgm
    TCP 139 – Netbios
    TCP 42 - WINS, Nameserv
    TCP/UDP 389- LDAP
    TCP 636 - SLDAP
    TCP 3268 - MSFT-GC
    TCP 3269 -MSFT-GC-SSL
    TCP/UDP 53 -DNS
    TCP/UDP 88 - Kerberos, www
    TCP 445 - SMB

    Thanks,

    Djembe

    _________________________________________________________________
    FREE pop-up blocking with the new MSN Toolbar – get it now!
    http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/

  • Next message: xyberpix: "Re: securing linux webserver?"

    Relevant Pages

    • RE: Open ports to establish a one-way trust
      ... 138/UDP NetBIOS Netlogon and Browsing ... 389/TCP/UDP LDAP ... We have a domain in our WAN that needs an Active Directory one-way trust ... TCP 135 – Microsoft RPC ...
      (Security-Basics)
    • RE: Open ports to establish a one-way trust
      ... Open ports to establish a one-way trust ... TCP 135 - Microsoft RPC ... UDP 137 - Netbios-ns ... TCP/UDP 389- LDAP ...
      (Security-Basics)
    • Re: Service with separate Tray interface
      ... Any thing else to say, about Pipes, or TCP? ... posting war, nevermind. ... .NET: It's About Trust! ...
      (microsoft.public.vb.general.discussion)
    • Re: Connection to a SAMBA Active Directory
      ... Keep in mind that you're trying to setup a NT4 style trust ... if you setup the Exchange as a resource forest model, ... domain and the Exchange server in another domain will work. ... I am able to define a 2 way Realm trust using the Active Directory ...
      (microsoft.public.exchange.connectivity)
    • Re: definition
      ... A Microsoft active directory, in simple terms, is like a giant telephone ... Redundant Array of Independent Disks, ... RAID disk drives are used frequently on servers but aren't ... When you establish a trust relationship between two domains, ...
      (microsoft.public.win2000.general)
    • Quantcast