[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 224
  • Last Modified:

AD & Firewall

I have a server for Active directory & Exchange 2003. It is configured with Public IP address

Let's say that Ip address is 201.1.1.11

I have a firewall which has two ethernet connection. Inside for 192.168.0.1 & outside 201.1.1.2

I think I need to open some ports for the firewall.

Which Ports do I have to open to join Active Directory from inside of firewall to outside of AD server?
0
manrippo
Asked:
manrippo
  • 4
  • 3
1 Solution
 
bmquintasCommented:
   Is this your layout?


                                Internet
                                     |
                                     |
                         Domain Controller 201.1.1.11
                                     |
                       WAN Firewall/Router 201.1.1.2
                                     |
                                     |
                       Lan Address Firewall/router 192.168.0.1
                                     |
                         Internal Network
0
 
manrippoAuthor Commented:
  This is the brief map          
                                                   Internet
                                                        |
                                                        |
                                              Router 201.1.1.1
                                                        |
                                     |--------------------------------------- |    
                                     |                                                  |  
                       Firewall outside 201.1.1.2                         Domain Controller 201.1.1.11
                       Firewall inside  192.168.0.1                                    
                                     |
                                     |
                         Internal Network
0
 
bmquintasCommented:
I suppose you have the DC in front of the firewall because you need external access (OWA,POP,WEB) ?
Even so, i think you shoul try a different approach, put the DC in the internal network,  disable its firewall (to join and work with AD it needs quite some ports open...) and to keep the external access , just forward the ports you need (80, 110,25...) Its much safer and practical.
0
Veeam and MySQL: How to Perform Backup & Recovery

MySQL and the MariaDB variant are among the most used databases in Linux environments, and many critical applications support their data on them. Watch this recorded webinar to find out how Veeam Backup & Replication allows you to get consistent backups of MySQL databases.

 
manrippoAuthor Commented:
The thing is we have other branch in other state. We want them use e-mail service ( by connecting microsoft exchange server, not with POP3 ).
0
 
manrippoAuthor Commented:
Is it possible that other branch can use the exchange server even though the server is behind a firewall?
0
 
bmquintasCommented:
Sure, just need to forward ports 80 and 443 from the firewall to the server
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now