Solved

Ports required to allow access through DMZ zone and MMC Plug - ins

Posted on 2006-11-29
5
451 Views
Last Modified: 2013-11-18
Hi,

I need to know what ports to open up on the firewall to allow access to the following:

1. Active Directory for our FTP Server sitting in the DMZ to communicate with the domain controller
2. Port to open for a windows xp plug in MMC for IIS6 to communicate to windows 2003 server sitting in the DMZ
3.  What MMC is required to be able to remotely restart services on a windows 2003 server, using a windows xp machine on another network. (what ports? same as the port in question 2?)

Thanks

Julia
0
Comment
Question by:Juliafrazer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 4

Accepted Solution

by:
Drizzt420 earned 500 total points
ID: 18036614
53 (TCP, UDP) - Domain Name System (DNS).
88 (TCP, UDP) - Kerberos authentication.  
135 (TCP) - EndPointMapper.
389 (TCP, UDP) - Lightweight Directory Access Protocol (LDAP).
445 (TCP) - Server message block (SMB) for Netlogon, LDAP conversion, and Microsoft Distributed File System (DFS) discovery.
3268 (TCP) - LDAP to global catalog servers.


Microsoft management consoles use RPC to connect to and manage a machine. This requires port 139, which is basically NetBIOS over TCP/IP.
0
 

Author Comment

by:Juliafrazer
ID: 18036933
very helpful thanks,

but any clues on point 3?
0
 
LVL 4

Expert Comment

by:Drizzt420
ID: 18041393
You would be better off using remote desktop to mess with services.

To connect to a remote PC, go to Start, Run, type MMC
Hit enter and go to File, Add Remove Snap-in, and add the Services snap-in
It will ask you if you want to run this console for the local machine or connect to a remote one, pick remote and follow the "instructions"

It could prove difficult to do if you are on a totally seperate network though, which is why I would use Remote Desktop:
On Server: right click My Computer, Properties, Remote Tab, check " Allow Users"
Add an account to allowed users
Forward port 3389 to the server, and set up a RDP connection on the XP workstation using the user accounts credentials that you allowed access for on the Server..
0

Featured Post

Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
A common practice in small networks is making file sharing easy which works extremely well when intra-network security is not an issue. In essence, everyone, that is "Everyone", is given access to all of the shared files - often the entire C: drive …
The purpose of this video is to demonstrate how to set up the WordPress backend so that each page automatically generates a Mailchimp signup form in the sidebar. This will be demonstrated using a Windows 8 PC. Tools Used are Photoshop, Awesome…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question