Open Ports on FW?

[earl]

Has any one figured out which ports on the firwall need
to be open to allow cross-domain authentication..

Where the clients & DC's reside behind a firewalls

IE

Client & DC (domain 1) \FW-VPN-FW\ Clients & DC (domain 2)

Full (two way) Trust between domains 1 & 2

Client from 2 logs on to PC in 1 what ports on FW are
needed.

 

[Marc Reynolds [MSFT]]

Hi Earl,

Please see the following article:

179442 How to Configure a Firewall for Domains and Trusts
http://support.microsoft.com/?id=179442

Thanks,
Marc Reynolds
Microsoft Technical Support

This posting is provided "AS IS" with no warranties, and confers no rights.

 

[C Babbage]

Suggest you work with your FW admin to sniff for packets
via the FW log/monitor originating from a test workstation
(w.x.y.z) and observe responses to request sent your pdc
(a.b.c.d). This should allow you to reverse-engineer the
ports requested and provision appropriate FW rules to
facilitate your cross domain connection needs.

Good luck.

 

[earl]

Thanks Marc

But, I was hoping to close all random ports >1024 or at
least set the intial port for RPC; like you can set on
the DC's

earl