I am in the process of installing a Config Manager 2012 Site Server in an untrusted DMZ Forest, the static ports that are required have been opened bidirectional through the Firewall. According to this Microsoft article https://support.microsoft.com/en-us/kb/929851?wa=wsignin1.0 there are Dynamic Ports that need to be opened which is why my install fails since we can see it is trying to use port 49154 during the install. According to the article, the minimum number of Dynamic Ports can be configured to use only 255 but getting Network Security to open that number of ports will be a very tough sell. I'm wondering if these ports only need to be opened during the installation process and then closed after the site roles are installed. I'm pretty sure I could get them open for the install if they can be closed after, anyone install a site server in an untrusted DMZ and can provide the information on ports?
-Rick ________________________________ CONFIDENTIALITY NOTICE: This email contains information from the sender that may be CONFIDENTIAL, LEGALLY PRIVILEGED, PROPRIETARY or otherwise protected from disclosure. This email is intended for use only by the person or entity to whom it is addressed. If you are not the intended recipient, any use, disclosure, copying, distribution, printing, or any action taken in reliance on the contents of this email, is strictly prohibited. If you received this email in error, please contact the sending party by reply email, delete the email from your computer system and shred any paper copies. Note to Patients: There are a number of risks you should consider before using e-mail to communicate with us. See our Privacy & Security page on www.henryford.com for more detailed information as well as information concerning MyChart, our new patient portal. If you do not believe that our policy gives you the privacy and security protection you need, do not send e-mail or Internet communications to us.
