Hello everyone,

I understand this is well documented that we need to block AD from
establishing communication to the LDAP ports, but I've never heard an
explanation on why this is needed.

Additionally, In our environment, we have a 100+ AD servers. Do I need to
add an iptables rule for each AD server, on each IPA server or only the
ones configured for DNS forwarding?

Thanks as always
Freeipa-users mailing list

Reply via email to