Re: Help On Ports

From: "Miha Pihler [MVP]" <mihap-news@xxxxxxxxxxx>
Date: Fri, 1 Dec 2006 09:27:20 +0100

Hi,

See if this helps you out

How to configure RPC dynamic port allocation to work with firewalls
http://support.microsoft.com/kb/154596

--
Mike
Microsoft MVP - Windows Security

"Bala" <Bala@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:07BC5238-5286-447F-AF7A-74FCDF048A94@xxxxxxxxxxxxxxxx

Hi, I have an application supplied by the vendor.

It has a client app and the server app.

Client and the server are in different domains.

There is a firewall on the server which blocks all the ports except these
Six listed below.

Port 135 = RPC Endpoint Mapper Port
Port 37719 = BusObjService
Port 5001 = File Transfer
Port 5002 = File Transfer
Port 1110 = DCOM Calls
Ports 1140 = DOCM Calls

All Ports are Unidirectional on the firewall.

The problem is Every time the client is attempting to connect to the
server
it is using different ports to make DCOM calls and fails due to Firewall
protection.

Also whenever the server is restarted the Server listens to a different
port
to listen to DOCM Calls.

Can we Permanently set the ports to listen only Via 1140 and 1110

Can you please suggest a solution.

Thanks.

Prev by Date: Event ID 538 vs 551 - strange behavior
Next by Date: Re: spam filter
Previous by thread: Event ID 538 vs 551 - strange behavior
Next by thread: Re: spam filter
Index(es):
- Date
- Thread

Relevant Pages

RE: FTP Proxy
... >>client side or the server side, and what kind of border security ... > case that the firewall not only needs to recalculate TCP's ... Who said anything about PATCHING the PORT commands? ... >>server side has to allow arbitrary data connections to be opened. ...
(Security-Basics)
Re: Unable to print to networked printer - get access denied messa
... Check the permissions on the server assuming the client has a true RPC ... How is the Standard TCP/IP port configured for the device? ...
(microsoft.public.windowsxp.print_fax)
Re: interfaces lo:1 lo:2 lo:3? (for remote ssh tunnels)
... That's the problem tunneling (port forwarding) solves. ... >>can't get past the client firewall. ... > I don't understand why the server would be making the ... server initiates another connection to the client -- in this ...
(Debian-User)
Re: Activesync / Airsync - Alternative Ports
... Setup a reverse HTTP proxy. ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to ...
(microsoft.public.pocketpc.activesync)
Re: Of Channels, Firewalls and Callbacks...
... new connection to the client's listening port. ... a firewall with only port 80 open, server can not open the connection to ... If your client is also NAT- ... server's firewall, so it can reach the client. ...
(microsoft.public.dotnet.framework.remoting)