Re: which ports are in need to be opened to change password over V

As I said, that doesn't affect remote users. The packets come through the firewall as encrypted data. All the firewall sees is the GRE header. The packets are unencrypted inside the firewall. The only filters which could affect this would be filters between the VPN server and the DC.

"kreit" <kreit@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message news:A57111E4-CEC9-4D6F-AD8D-45EE6605709C@xxxxxxxxxxxxxxxx
Bill thank you for your prompt response. I should have explained my question
in more detail..

I understand the client communicates via 1723 and gre for pptp.
There are some restrictions/filters that determine which resources in
corporate network remote users are allowed to access. Which are minimum
required ports are in need to be open betweed a client an a DC to be able to
change AD domain account password?

Thank you

"Bill Grant" wrote:

It won't be a problem with ports. All traffic between the remote user and
the VPN server is encrypted and encapsulated in transit. It all uses the
same port (tcp port 1723 for pptp). It is nothing like a normal TCP/IP
connection.

"kreit" <kreit@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:D3E51341-309E-4098-8303-1421ABEAA30F@xxxxxxxxxxxxxxxx
> Good day,
> Could you explain which ports are in need to be opened to change > passwords
> over VPN? Windows XP is a member of domain. Sometimes remote users will
> change their passwords out of the office via vpn..
>
> Thank you in advance
> Andrey



.

Relevant Pages

  • Re: which ports are in need to be opened to change password over V
    ... Do you have a firewall between your LAN clients and the DC? ... affect this would be filters between the VPN server and the DC. ... > I understand the client communicates via 1723 and gre for pptp. ... > required ports are in need to be open betweed a client an a DC to be> able ...
    (microsoft.public.windows.server.networking)
  • Re: which ports are in need to be opened to change password over V
    ... I'm not sure if that will work or not, but it was about the closest thing I could find out about ports for AD and passwords. ... You may be right about an internal firewall, but why would you do that? ... If you have gone to the trouble of setting up a VPN server to give remote machines access to your domain, why would you put that VPN server in a network which can't see a DC? ... When it is unencrypted it should be on the same network as the LAN machines. ...
    (microsoft.public.windows.server.networking)
  • Re: Hardware firewall blocking Web sites on hosting computer
    ... > firewall and VPN server. ... Here are the ports I presently have open: ...
    (comp.security.firewalls)
  • VPN and Ports
    ... my question is about ports. ... My firewall and ports: ... Client Ports VPN Server Ports ... UDP 500 UDP 500 ...
    (microsoft.public.windows.server.networking)
  • Re: Trouble accessing Outlook Web Access from behind firewall
    ... When starting the firewall I also set ... > rejected and dropped packets are logged, however I see nothing in my log ... > # Higher ports needed to accept incoming/outgoing calls ...
    (comp.security.firewalls)
Loading