Re: AD ports
s
Date: 09/12/04
- Next message: Sam: "Re: Policy"
- Previous message: Karl Levinson [x y] mvp: "Re: Have I been hacked Windows Server 2003?"
- In reply to: Karl Levinson [x y] mvp: "Re: AD ports"
- Next in thread: Miha Pihler: "Re: AD ports"
- Reply: Miha Pihler: "Re: AD ports"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 12 Sep 2004 15:24:06 +0200
Hi
Is there a problem with what I did?
Shay
"Karl Levinson [x y] mvp" <levinson_k@despammed.com> wrote in message
news:e3s5fKMmEHA.2504@TK2MSFTNGP14.phx.gbl...
> One possibility is using IPSec between the two domain controllers? Then
> you open ports for IPSec and not for AD.
>
> Other possibilities are to decide that everything is working and keep
> those
> ports closed, or to open a range of ports.
>
>
> <s> wrote in message news:uW393sLmEHA.2412@TK2MSFTNGP10.phx.gbl...
>> Hi
>>
>> I have 2 sites that protected by CheckPoint firewall.
>>
>> In each site I have DC.
>>
>> I closed all the ports and opened only the necessary ports for AD and
>> internet.
>>
>> I also changed the RPC dynamic assignment port from Dynamic to Fix ,port
>> 9999, in
>> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters\
>> I had the parameter TCP/IP Port=9999
>>
>> All the replication is working good.
>>
>> My problem is that in the FW monitor I see that the 2 DC's try to connect
> in
>> ports 1057,1059 and 1061, but those prots r closed.
>>
>> How can I find what r those ports?
>>
>> Than'x
>> Shay
>>
>>
>>
>>
>>
>
>
- Next message: Sam: "Re: Policy"
- Previous message: Karl Levinson [x y] mvp: "Re: Have I been hacked Windows Server 2003?"
- In reply to: Karl Levinson [x y] mvp: "Re: AD ports"
- Next in thread: Miha Pihler: "Re: AD ports"
- Reply: Miha Pihler: "Re: AD ports"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
