Re: Active Directory server: WMI cannot be accessed

The problem ened up being really easy to solve. I ran the following
command from a command shell. Fixed all the problems.

Netsh firewall set service type=remoteadmin mode=enable scope=custom
address=<IP's of my AD Servers>

Lincoln De Kalb wrote:
I'm not an Exchange expert (yet) but I think what you are looking for is a
frontend / backend solution with a RPC over HTTPS between the two. You
haven't menitoned what the actual problem is but from my readin I think this
is the solution to the Swiss Cheesed Firewall approach of RPC.


<dhemond@xxxxxxxxx> wrote in message
news:1155045583.877662.286580@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
For the first time ever, I can build a MS Exchange server without a
huge time constraint. So, I decided to solve all the issues raised by
the Microsoft Exchange Server Brest Practices Analyzer Tool. However,
I can't seem to solve this one.

The network that I run on is extremly hostle. So, I have to keep all
servers heavily locked down (firewalls.. etc). So, my AD servers have
very few ports open. All the research I have put into this point to
RPC ports on the AD servers. But, they are only referenced as just
open RPC ports. Then I find that RPC ports are random ports from
1024-65***. I cannot just open up all those ports. Also, when I find
the ports that need to be open, they have to be locked to a single IP
(the exchange server/other AD servers).

I know it's only a firewall issue, because I can turn off the firewall
on an AD server and everything works just fine. So, what do I need to
open up?


.

Relevant Pages

  • RE: Slow user logon on Terminal server after migration to Windows 2003
    ... The Terminal Servers are 2000 or 2003. ... "Inside the firewall zone" means that the Citrix Servers have a firewall ... available RPC ports? ...
    (microsoft.public.windows.server.active_directory)
  • Re: medical records, web server, & stateful firewall vs packet filter
    ... > image and SQL servers directly (the image server link in particular ... The image and SQL servers ... the 2 firewall layers should run different s/ware - the idea is that a major ... security always cost a lot more than you expect (this comes up whenever we ...
    (comp.dcom.sys.cisco)
  • Re: I have been hacked (WAS: Have I been hacked or is nmap wrong?)
    ... > console based ftp client. ... the FTP servers have? ... > They are really mail servers, at least smtp for outgoing mails ... If you're firewall was dropping incoming packets destined to ...
    (freebsd-questions)
  • RE: Secure Network Design (DMZ, LAN, etc)
    ... you'll see that their both on the same subnet. ... It has a port for the trusted network and a port ... Our firewall handles NAT. ... > servers, wouldn't it require a public IP and therefore be somewhat ...
    (Security-Basics)
  • Re[3]: What can make DNS lookups slow? [semi-solved]
    ... My problem was that DNS lookups from and through my debian firewall ... My ISP's DNS servers are handing back replies from ... the machines inside the firewall, then I'd love to hear of it. ... # means that it queries the dmz server for everything ...
    (Debian-User)