Re: IPSEC through firewall for DC replication
From: Steve Riley [MSFT] (steriley_at_microsoft.com)
Date: 06/06/04
- Next message: Steve Riley [MSFT]: "Re: Authenticate as computer and wireless security"
- Previous message: Steve Riley [MSFT]: "Re: Override domain security policy for single user"
- In reply to: tony: "IPSEC through firewall for DC replication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 5 Jun 2004 19:52:28 -0700
Please see
http://www.microsoft.com/downloads/details.aspx?FamilyID=c2ef3846-43f0-4caf-9767-a9166368434e&displaylang=en.
It's the definitive guide for configuring domain controller replication
across a firewall.
Steve
steriley@microsoft.com
"tony" <anonymous@discussions.microsoft.com> wrote in message
news:178a101c44994$a47f4c50$a601280a@phx.gbl...
> ALL,
>
> I am trying to use IPSEC to send Domain Controller
> replication through the firewall for a one-way trust with
> the Domain controllers in the DMZ. However, IPSec (ESP)
> packet dropped keeps occuring at the firewall because the
> destination port is being randomly assigned, the source
> port for IPSEC(ESP) is port 0. Is there a way to force
> the destination port to a specific port number so I can
> allow it in my firewall rules?
>
> Thank you,
>
> Tony
- Next message: Steve Riley [MSFT]: "Re: Authenticate as computer and wireless security"
- Previous message: Steve Riley [MSFT]: "Re: Override domain security policy for single user"
- In reply to: tony: "IPSEC through firewall for DC replication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
