clients separated from DC by firewall

From: "Jay" <jay@xxxxxxxxxx>
Date: Thu, 7 Jun 2007 17:22:29 -0400

straightforward question - I have a range of PCs that are separated from their domain controller by a PIX. I need to know what ports are required for me to join these clients to the domain.

the doc 'Active Directory in Networks Segmented by Firewalls' leads me to believe I need:

445 (DS)
88 (Kerberos)
389 (LDAP)
53 (DNS)

assume both TCP and UDP for the above. The problem is I am getting and RPC error and I see 135 being dropped by my PIX. What are the ports needed to join a computer to a domain?

Is there a 'right' way to do this?

Thanks
Blake

.

Prev by Date: Re: root CA as a virtual machine?
Next by Date: Re: Remote desktop: cannot copy files why still not working
Previous by thread: User folders permissions.
Next by thread: Re: clients separated from DC by firewall
Index(es):
- Date
- Thread

Relevant Pages

RE: Exhange 2003
... Is the PIX smtp fixup protocol enabled? ... > and when the Exchange server actually presented it's 220 banner. ... no restriction on ports or types of traffic just on host... ... >>But if you open a tcp connection and after that run nbtstat command, ...
(Pen-Test)
Re: exchange being switched to static ports due to firewall
... this is from memory as I ditched Cisco Pix years ago and I'm ... access-group acl_outside in interface outside ... Cisco, I have to tell exchange to use static ports, and I have to tell my ... I'm sticking a cisco 506e pix in front of my mail server which is stand ...
(microsoft.public.exchange2000.connectivity)
Re: Lightning Damage
... All the other PCs were off in the house. ... When the power came back on the Router had suffered damage in that the ADSL ... Three of these ports were connected at the time of the storm. ... Sounds like there was a large differential voltage pulse between ...
(uk.telecom.broadband)
Re: Secure network question???
... that a PIX 501 is something that I can afford, Sorry, I was thinking back a ... programed a Cisco router for B-ISDN so you will still hear from me in the ... security and have a sound knowledge of reflexive ACL's. ... I don't yet know what ports that would be. ...
(comp.dcom.sys.cisco)
Lightning Damage
... There were several power ... All the other PCs were off in the house. ... Three of these ports were connected at the time of the storm. ... How was the hit so selective? ...
(uk.telecom.broadband)