Results 1 to 5 of 5

Thread: what port is domain authentication using.

  1. #1
    inenewbl Guest

    what port is domain authentication using.

    Hi all. I have a small office with a few domain client PCs. The DCs are
    housed in my main office. The small office is located in another location
    away from the main office and both offices are connected using a lease line.
    We are using a firewall to restrict traffic coming from the small office into
    the main office. Hence i would like to know what port should i open to allow
    the domain PCs in the small office to be able to authenticate to the DC upon
    logon. Thks in advance.

  2. #2
    Ace Fekay [MVP] Guest

    Re: what port is domain authentication using.

    In news:[email protected],
    inenewbl <[email protected]> typed:
    > Hi all. I have a small office with a few domain client PCs. The DCs
    > are housed in my main office. The small office is located in another
    > location away from the main office and both offices are connected
    > using a lease line. We are using a firewall to restrict traffic
    > coming from the small office into the main office. Hence i would like
    > to know what port should i open to allow the domain PCs in the small
    > office to be able to authenticate to the DC upon logon. Thks in
    > advance.


    There are about 29 ports, including UDP >1023 all inclusive. Your better bet
    is to create a wide open VPN tunnel between your hardware firewalls, that is
    if they are capable of doing so. This way they will connect the two offices
    by their internal subnets and not thru the firewall. And if you are using
    NAT, you will NEED a VPN because necessary traffic CANNOT traverse a NAT
    unless using a tunnel based VPN that uses the NAT devices as the endpoint.

    If you really want to know what ports they are, here you go. But I think it
    will swiss cheese the firewall with too many ports opened.

    Active Directory Replication over Firewalls
    http://technet.microsoft.com/en-us/l.../bb727063.aspx

    --
    Regards,
    Ace

    This posting is provided "AS-IS" with no warranties or guarantees and
    confers no rights.

    Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
    MVP Microsoft MVP - Directory Services
    Microsoft Certified Trainer

    For urgent issues, you may want to contact Microsoft PSS directly. Please
    check http://support.microsoft.com for regional support phone numbers.

    Infinite Diversities in Infinite Combinations



  3. #3
    inenewbl Guest

    Re: what port is domain authentication using.

    Hi Ace,

    Thk you for the reply.
    Your website seems to be for win2000 server, can it be applied for win2003
    as well? My DC is of win2003.

    "Ace Fekay [MVP]" wrote:

    > In news:[email protected],
    > inenewbl <[email protected]> typed:
    > > Hi all. I have a small office with a few domain client PCs. The DCs
    > > are housed in my main office. The small office is located in another
    > > location away from the main office and both offices are connected
    > > using a lease line. We are using a firewall to restrict traffic
    > > coming from the small office into the main office. Hence i would like
    > > to know what port should i open to allow the domain PCs in the small
    > > office to be able to authenticate to the DC upon logon. Thks in
    > > advance.

    >
    > There are about 29 ports, including UDP >1023 all inclusive. Your better bet
    > is to create a wide open VPN tunnel between your hardware firewalls, that is
    > if they are capable of doing so. This way they will connect the two offices
    > by their internal subnets and not thru the firewall. And if you are using
    > NAT, you will NEED a VPN because necessary traffic CANNOT traverse a NAT
    > unless using a tunnel based VPN that uses the NAT devices as the endpoint.
    >
    > If you really want to know what ports they are, here you go. But I think it
    > will swiss cheese the firewall with too many ports opened.
    >
    > Active Directory Replication over Firewalls
    > http://technet.microsoft.com/en-us/l.../bb727063.aspx
    >
    > --
    > Regards,
    > Ace
    >
    > This posting is provided "AS-IS" with no warranties or guarantees and
    > confers no rights.
    >
    > Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
    > MVP Microsoft MVP - Directory Services
    > Microsoft Certified Trainer
    >
    > For urgent issues, you may want to contact Microsoft PSS directly. Please
    > check http://support.microsoft.com for regional support phone numbers.
    >
    > Infinite Diversities in Infinite Combinations
    >
    >
    >


  4. #4
    Herb Martin Guest

    Re: what port is domain authentication using.


    "inenewbl" <[email protected]> wrote in message
    news:[email protected]...
    > Hi Ace,
    >
    > Thk you for the reply.
    > Your website seems to be for win2000 server, can it be applied for win2003
    > as well? My DC is of win2003.


    They are largely the same. Win2003 has some very nice additional
    featurs but 2003 and even 2008 are not major departures from Win2000.


    > "Ace Fekay [MVP]" wrote:
    >
    >> In news:[email protected],
    >> inenewbl <[email protected]> typed:
    >> > Hi all. I have a small office with a few domain client PCs. The DCs
    >> > are housed in my main office. The small office is located in another
    >> > location away from the main office and both offices are connected
    >> > using a lease line. We are using a firewall to restrict traffic
    >> > coming from the small office into the main office. Hence i would like
    >> > to know what port should i open to allow the domain PCs in the small
    >> > office to be able to authenticate to the DC upon logon. Thks in
    >> > advance.

    >>
    >> There are about 29 ports, including UDP >1023 all inclusive. Your better
    >> bet
    >> is to create a wide open VPN tunnel between your hardware firewalls, that
    >> is
    >> if they are capable of doing so. This way they will connect the two
    >> offices
    >> by their internal subnets and not thru the firewall. And if you are using
    >> NAT, you will NEED a VPN because necessary traffic CANNOT traverse a NAT
    >> unless using a tunnel based VPN that uses the NAT devices as the
    >> endpoint.
    >>
    >> If you really want to know what ports they are, here you go. But I think
    >> it
    >> will swiss cheese the firewall with too many ports opened.
    >>
    >> Active Directory Replication over Firewalls
    >> http://technet.microsoft.com/en-us/l.../bb727063.aspx
    >>
    >> --
    >> Regards,
    >> Ace
    >>
    >> This posting is provided "AS-IS" with no warranties or guarantees and
    >> confers no rights.
    >>
    >> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
    >> MVP Microsoft MVP - Directory Services
    >> Microsoft Certified Trainer
    >>
    >> For urgent issues, you may want to contact Microsoft PSS directly. Please
    >> check http://support.microsoft.com for regional support phone numbers.
    >>
    >> Infinite Diversities in Infinite Combinations
    >>
    >>
    >>




  5. #5
    Ace Fekay [MVP] Guest

    Re: what port is domain authentication using.

    In news:[email protected],
    Herb Martin <[email protected]> typed:
    > "inenewbl" <[email protected]> wrote in message
    > news:[email protected]...
    > > Hi Ace,
    > >
    > > Thk you for the reply.
    > > Your website seems to be for win2000 server, can it be applied for
    > > win2003 as well? My DC is of win2003.

    >
    > They are largely the same. Win2003 has some very nice additional
    > featurs but 2003 and even 2008 are not major departures from Win2000.


    I agree!

    Ace



Similar Threads

  1. LDAP simple bind authentication using port 389
    By Ben English in forum Active Directory
    Replies: 8
    Last Post: 14-05-2012, 06:28 PM
  2. Replies: 1
    Last Post: 22-05-2011, 03:41 AM
  3. Authentication via Windows domain in proxy server
    By Algernon in forum Networking & Security
    Replies: 6
    Last Post: 17-02-2011, 11:18 AM
  4. Domain authentication through a VPN
    By bigboy in forum Active Directory
    Replies: 0
    Last Post: 16-10-2008, 08:19 PM
  5. trusted domain authentication
    By Urs Wegmüller in forum Windows Server Help
    Replies: 2
    Last Post: 15-07-2008, 06:23 PM

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Page generated in 1,751,670,050.01736 seconds with 16 queries