Go Back   TechArena Community > Technical Support > Computer Help > Windows Server > Windows Server Help
Become a Member!
Forgot your username/password?
Tags Active Topics RSS Search Mark Forums Read

Sponsored Links



what port is domain authentication using.

Windows Server Help


Reply
 
Thread Tools Search this Thread
  #1  
Old 08-05-2008
inenewbl
 
Posts: n/a
what port is domain authentication using.

Hi all. I have a small office with a few domain client PCs. The DCs are
housed in my main office. The small office is located in another location
away from the main office and both offices are connected using a lease line.
We are using a firewall to restrict traffic coming from the small office into
the main office. Hence i would like to know what port should i open to allow
the domain PCs in the small office to be able to authenticate to the DC upon
logon. Thks in advance.

Reply With Quote
  #2  
Old 08-05-2008
Ace Fekay [MVP]
 
Posts: n/a
Re: what port is domain authentication using.

In news:77C5F8C7-CC7F-4AB5-824E-4D256BE7AF2C@microsoft.com,
inenewbl <inenewbl@discussions.microsoft.com> typed:
> Hi all. I have a small office with a few domain client PCs. The DCs
> are housed in my main office. The small office is located in another
> location away from the main office and both offices are connected
> using a lease line. We are using a firewall to restrict traffic
> coming from the small office into the main office. Hence i would like
> to know what port should i open to allow the domain PCs in the small
> office to be able to authenticate to the DC upon logon. Thks in
> advance.


There are about 29 ports, including UDP >1023 all inclusive. Your better bet
is to create a wide open VPN tunnel between your hardware firewalls, that is
if they are capable of doing so. This way they will connect the two offices
by their internal subnets and not thru the firewall. And if you are using
NAT, you will NEED a VPN because necessary traffic CANNOT traverse a NAT
unless using a tunnel based VPN that uses the NAT devices as the endpoint.

If you really want to know what ports they are, here you go. But I think it
will swiss cheese the firewall with too many ports opened.

Active Directory Replication over Firewalls
http://technet.microsoft.com/en-us/l.../bb727063.aspx

--
Regards,
Ace

This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.

Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
MVP Microsoft MVP - Directory Services
Microsoft Certified Trainer

For urgent issues, you may want to contact Microsoft PSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Infinite Diversities in Infinite Combinations


Reply With Quote
  #3  
Old 08-05-2008
inenewbl
 
Posts: n/a
Re: what port is domain authentication using.

Hi Ace,

Thk you for the reply.
Your website seems to be for win2000 server, can it be applied for win2003
as well? My DC is of win2003.

"Ace Fekay [MVP]" wrote:

> In news:77C5F8C7-CC7F-4AB5-824E-4D256BE7AF2C@microsoft.com,
> inenewbl <inenewbl@discussions.microsoft.com> typed:
> > Hi all. I have a small office with a few domain client PCs. The DCs
> > are housed in my main office. The small office is located in another
> > location away from the main office and both offices are connected
> > using a lease line. We are using a firewall to restrict traffic
> > coming from the small office into the main office. Hence i would like
> > to know what port should i open to allow the domain PCs in the small
> > office to be able to authenticate to the DC upon logon. Thks in
> > advance.

>
> There are about 29 ports, including UDP >1023 all inclusive. Your better bet
> is to create a wide open VPN tunnel between your hardware firewalls, that is
> if they are capable of doing so. This way they will connect the two offices
> by their internal subnets and not thru the firewall. And if you are using
> NAT, you will NEED a VPN because necessary traffic CANNOT traverse a NAT
> unless using a tunnel based VPN that uses the NAT devices as the endpoint.
>
> If you really want to know what ports they are, here you go. But I think it
> will swiss cheese the firewall with too many ports opened.
>
> Active Directory Replication over Firewalls
> http://technet.microsoft.com/en-us/l.../bb727063.aspx
>
> --
> Regards,
> Ace
>
> This posting is provided "AS-IS" with no warranties or guarantees and
> confers no rights.
>
> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
> MVP Microsoft MVP - Directory Services
> Microsoft Certified Trainer
>
> For urgent issues, you may want to contact Microsoft PSS directly. Please
> check http://support.microsoft.com for regional support phone numbers.
>
> Infinite Diversities in Infinite Combinations
>
>
>

Reply With Quote
  #4  
Old 08-05-2008
Herb Martin
 
Posts: n/a
Re: what port is domain authentication using.


"inenewbl" <inenewbl@discussions.microsoft.com> wrote in message
news:F4F6267D-D1EC-4F03-8B78-2CE440841F6C@microsoft.com...
> Hi Ace,
>
> Thk you for the reply.
> Your website seems to be for win2000 server, can it be applied for win2003
> as well? My DC is of win2003.


They are largely the same. Win2003 has some very nice additional
featurs but 2003 and even 2008 are not major departures from Win2000.


> "Ace Fekay [MVP]" wrote:
>
>> In news:77C5F8C7-CC7F-4AB5-824E-4D256BE7AF2C@microsoft.com,
>> inenewbl <inenewbl@discussions.microsoft.com> typed:
>> > Hi all. I have a small office with a few domain client PCs. The DCs
>> > are housed in my main office. The small office is located in another
>> > location away from the main office and both offices are connected
>> > using a lease line. We are using a firewall to restrict traffic
>> > coming from the small office into the main office. Hence i would like
>> > to know what port should i open to allow the domain PCs in the small
>> > office to be able to authenticate to the DC upon logon. Thks in
>> > advance.

>>
>> There are about 29 ports, including UDP >1023 all inclusive. Your better
>> bet
>> is to create a wide open VPN tunnel between your hardware firewalls, that
>> is
>> if they are capable of doing so. This way they will connect the two
>> offices
>> by their internal subnets and not thru the firewall. And if you are using
>> NAT, you will NEED a VPN because necessary traffic CANNOT traverse a NAT
>> unless using a tunnel based VPN that uses the NAT devices as the
>> endpoint.
>>
>> If you really want to know what ports they are, here you go. But I think
>> it
>> will swiss cheese the firewall with too many ports opened.
>>
>> Active Directory Replication over Firewalls
>> http://technet.microsoft.com/en-us/l.../bb727063.aspx
>>
>> --
>> Regards,
>> Ace
>>
>> This posting is provided "AS-IS" with no warranties or guarantees and
>> confers no rights.
>>
>> Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT,
>> MVP Microsoft MVP - Directory Services
>> Microsoft Certified Trainer
>>
>> For urgent issues, you may want to contact Microsoft PSS directly. Please
>> check http://support.microsoft.com for regional support phone numbers.
>>
>> Infinite Diversities in Infinite Combinations
>>
>>
>>



Reply With Quote
  #5  
Old 09-05-2008
Ace Fekay [MVP]
 
Posts: n/a
Re: what port is domain authentication using.

In news:uuyrQzPsIHA.1236@TK2MSFTNGP02.phx.gbl,
Herb Martin <news@learnquick.com> typed:
> "inenewbl" <inenewbl@discussions.microsoft.com> wrote in message
> news:F4F6267D-D1EC-4F03-8B78-2CE440841F6C@microsoft.com...
> > Hi Ace,
> >
> > Thk you for the reply.
> > Your website seems to be for win2000 server, can it be applied for
> > win2003 as well? My DC is of win2003.

>
> They are largely the same. Win2003 has some very nice additional
> featurs but 2003 and even 2008 are not major departures from Win2000.


I agree!

Ace


Reply With Quote
Reply

  TechArena Community > Technical Support > Computer Help > Windows Server > Windows Server Help
Tags: ,



Thread Tools Search this Thread
Search this Thread:

Advanced Search


Similar Threads for: "what port is domain authentication using."
Thread Thread Starter Forum Replies Last Post
LDAP simple bind authentication using port 389 Ben English Active Directory 8 14-05-2012 06:28 PM
MS ADAM authentication with Java app - can authenticate with local ADAM accounts; CANNOT authenticate with proxy accounts sync'd from AD domain bert213 Active Directory 1 22-05-2011 03:41 AM
Authentication via Windows domain in proxy server Algernon Networking & Security 6 17-02-2011 11:18 AM
Domain authentication through a VPN bigboy Active Directory 0 16-10-2008 08:19 PM
trusted domain authentication Urs Wegm?ller Windows Server Help 2 15-07-2008 06:23 PM


All times are GMT +5.5. The time now is 01:24 PM.