On 2007-07-20 dubaisans dubai wrote: > i want to put win2k3 active directory server behind the corporate > firewall. we are using windows xp clients and also group policy > > what ports need to be allowed on firewall ? is there any fine tuning > that can be done on AD to make it more firewall friendly? > > i have some DC is remote locations . what ports need to be allowed > between DCs?
You should not open any ports into your LAN unless you have very, VERY good reasons to do so. Establish a VPN between your LAN and the remote locations. Regards Ansgar Wiechers -- "All vulnerabilities deserve a public fear period prior to patches becoming available." --Jason Coombs on Bugtraq
