Re: Firewall between DC and member servers

Tech-Archive recommends: Fix windows errors by optimizing your registry

From: "Jorge de Almeida Pinto [MVP]" <SubstituteThisWithMyFullNameSeparatedByDots@xxxxxxxxx>
Date: Tue, 20 Jun 2006 22:30:36 +0200

putting a firewall between DCs and servers/clients or swiss cheese is
practically the same

--

Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)

# Jorge de Almeida Pinto # MVP Windows Server - Directory Services

BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
------------------------------------------------------------------------------------------
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always test before implementing!
------------------------------------------------------------------------------------------
#################################################
#################################################
------------------------------------------------------------------------------------------
"lightcap" <lightcap@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:60325635-31B8-4E00-B789-2F38B76A7056@xxxxxxxxxxxxxxxx

I'm checking packet traces to see what goes on between a DC and a member
server since we will have a firewall in between. There are a couple things
that are not mentioned in KBs and white papers I've read. Primarily there
are
a lot of RPC calls. What are they likely to be? White papers say they are
necessary for DC replication but do not mention them for DC to member
communication. There are also pings which I believe are related to SMB on
port 445. I gleaned that nugget while playing with Windows Firewall. What
happens if there is no reponse to the pings? Will SMB fail? TIA

Follow-Ups:
- Re: Firewall between DC and member servers
  - From: Jorge Silva

Prev by Date: Re: Required Open Ports to connect MIIS to a AD Forest behind a Fi
Next by Date: Re: Allow only one user access to workstation
Previous by thread: Re: Firewall between DC and member servers
Next by thread: Re: Firewall between DC and member servers
Index(es):
- Date
- Thread

Relevant Pages

Re: SBS 2003 Firewalleinstellungen
... denn die MS eigene Firewall blockiert keinen ausgehenden Traffic. ... Mark Heitbrink - MVP Windows Server - Group Policy ...
(microsoft.public.de.german.windows.server.general)
Re: CEICW fails at firewall config
... Do you or do you not have ISA 2000 or ISA 2004 installed on the SBS server? ... Do you have 2 NICs in the SBS? ... CEICW fails on firewall configuration every time. ... >>> Call to Creating the protected networks access rule returned ok. ...
(microsoft.public.windows.server.sbs)
Re: Recycler security issues on IIS server
... > latest upates to the server. ... > like to see the server put behind our firewall, ... other software, install all patches, IISlockdown, URLscan, use the correct ... the procedures you follow may vary depending on your security needs. ...
(microsoft.public.inetserver.iis.security)
Re: ISA SERVER NOT STARTING
... I delete the nat/basic firewall and stop and started the RRAS an tried to ... There were no critical events in the DNS Server Log in the last 24 hours. ... An error occurred during logon ... Caller User Name: - ...
(microsoft.public.windows.server.sbs)
Re: For Microsoft Partners and Customers Who Cant Download or Access
... to reconfigure the firewall, but to use a static IP on your client ... and to make sure that the DNS server entries on the client are ... Microsoft for msdn2.microsoft.com. ... use a static IP and set the DNS server addresses to the DNS ...
(microsoft.public.dotnet.general)