Re: unmanageable DNS
- From: "Ace Fekay [MVP]" <PleaseAskMe@xxxxxxxxxxxxxx>
- Date: Sat, 25 Nov 2006 17:08:23 -0500
In news:8577F63D-6F98-4644-98B9-E9FD255A443C@xxxxxxxxxxxxx,
p.o <po@xxxxxxxxxxxxxxxxxxxxxxxxx> stated, which I commented on below:
Hi
My serves are standing in DMZ zone so I've got blocked many ports.
I've configured AD as Microsoft said and Directory Services works ok.
When I delete registry key
HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc\Internet\ports the mmc snap
working ok (localy and remote) but when I got this reg key I can't
connect to DNS via MMC (localy and remote).
How shoudl I configure DNS to work with static rpc.
Thanks,
Honestly, I've never tried it with DNS, but I can tell you this much: MS DNS
will communicate with other Windows machines (whether thru DNS queries or
simply trying to conenct to the machine using an MMC console), with dynamic
ports. Connecting to a console is not really a DNS port, but rather the RPC
ports. I have not configured such as thing as for RPC traffic, because those
articles depict specific domain RPC traffic. What you're looking for is
standar network communication & authentication between domain members which
includes numerous ports. If you look at those articles, they show what ports
and their ranges are required. Maybe you can create specific rules between
specific machiens allowing those ports, or create a VPN between the DMZ
machine and the internal network, which I've seen many admins have
successfully configured in your type of scenario.
Ace
.
- References:
- Re: unmanageable DNS
- From: Ace Fekay [MVP]
- Re: unmanageable DNS
- From: p.o
- Re: unmanageable DNS
- From: Ace Fekay [MVP]
- Re: unmanageable DNS
- From: Ace Fekay [MVP]
- Re: unmanageable DNS
- From: p.o
- Re: unmanageable DNS
- Prev by Date: Re: DNS Issue
- Next by Date: Re: strange dns client errors
- Previous by thread: Re: unmanageable DNS
- Next by thread: Re: DNS/Active Directory: Entries missing after scavaging
- Index(es):
Relevant Pages
|
