the protocols&ports required for win2000 DCs' synchronize

Tech-Archive recommends: Speed Up your PC by fixing your registry

From: seraph (redseraph_at_163.com)
Date: 07/22/04

Next message: Shilpa Sinha [MSFT]: "RE: win2k3 sbs wins-server startup problems"
Previous message: Lanwench [MVP - Exchange]: "Re: win2k server shut down problem"
Next in thread: Phillip Windell: "Re: the protocols&ports required for win2000 DCs' synchronize"
Reply: Phillip Windell: "Re: the protocols&ports required for win2000 DCs' synchronize"
Messages sorted by: [ date ] [ thread ]

Date: Wed, 21 Jul 2004 19:43:37 -0700

We will setup some win2000 DCs in our network environment,
but the firewall separate those DCs.
Which ports should be allowed to let the DCs can
communicated with each other successfully?
I am not sure the list below is suitable.

UDP/TCP 53 (DNS)
UDP/TCP 88 (Kerberos authentication)
TCP 123 (Network Time Protocol-NTP)
TCP 135 RPC
TCP 445 (Microsoft Directory Service)

Next message: Shilpa Sinha [MSFT]: "RE: win2k3 sbs wins-server startup problems"
Previous message: Lanwench [MVP - Exchange]: "Re: win2k server shut down problem"
Next in thread: Phillip Windell: "Re: the protocols&ports required for win2000 DCs' synchronize"
Reply: Phillip Windell: "Re: the protocols&ports required for win2000 DCs' synchronize"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Re: NTFRSUTIL error 1753
... So what you are suggesting is that I do not start the windows firewall ... service on both my dcs. ... issue even when I hard code the ports in the registry it seems not to work ...
(microsoft.public.windows.server.active_directory)
Re: NTFRSUTIL error 1753
... Yes DC2 did not complete initialzation of sysvol ... AD communication between DCs requires 29 ports opened and free and clear, including the dynamic ephemeral response ports. ... This will insure DCs can communicate with each other, as well as clients can communicate with the DCs. ...
(microsoft.public.windows.server.active_directory)
Re: AD TRUST- Specify which Domain Contollers to connect to
... During trust creation it will choose an available DC, ... controllers. ... See here for opening ports for trusts: ... A is a small company (3 DCs), B is bigger, the security guys ...
(microsoft.public.windows.server.active_directory)
Re: the protocols&ports required for win2000 DCs synchronize
... By the time you'd do that, there isn't much point in having the firewall. ... > We will setup some win2000 DCs in our network environment,> but the firewall separate those DCs. ... > UDP/TCP 88 ... > TCP 123 ...
(microsoft.public.win2000.networking)
Re: Sites DC
... connections you need. ... MVP - Directory Services ... I have a Main default site which has three DCs that communicate directly ... my forest..All ports are enabled for this. ...
(microsoft.public.windows.server.active_directory)