Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Ports required to allow access through DMZ zone and MMC Plug - ins

Posted on 2006-11-29
5
Medium Priority
?
453 Views
Last Modified: 2013-11-18
Hi,

I need to know what ports to open up on the firewall to allow access to the following:

1. Active Directory for our FTP Server sitting in the DMZ to communicate with the domain controller
2. Port to open for a windows xp plug in MMC for IIS6 to communicate to windows 2003 server sitting in the DMZ
3.  What MMC is required to be able to remotely restart services on a windows 2003 server, using a windows xp machine on another network. (what ports? same as the port in question 2?)

Thanks

Julia
0
Comment
Question by:Juliafrazer
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
5 Comments
 
LVL 4

Accepted Solution

by:
Drizzt420 earned 2000 total points
ID: 18036614
53 (TCP, UDP) - Domain Name System (DNS).
88 (TCP, UDP) - Kerberos authentication.  
135 (TCP) - EndPointMapper.
389 (TCP, UDP) - Lightweight Directory Access Protocol (LDAP).
445 (TCP) - Server message block (SMB) for Netlogon, LDAP conversion, and Microsoft Distributed File System (DFS) discovery.
3268 (TCP) - LDAP to global catalog servers.


Microsoft management consoles use RPC to connect to and manage a machine. This requires port 139, which is basically NetBIOS over TCP/IP.
0
 

Author Comment

by:Juliafrazer
ID: 18036933
very helpful thanks,

but any clues on point 3?
0
 
LVL 4

Expert Comment

by:Drizzt420
ID: 18041393
You would be better off using remote desktop to mess with services.

To connect to a remote PC, go to Start, Run, type MMC
Hit enter and go to File, Add Remove Snap-in, and add the Services snap-in
It will ask you if you want to run this console for the local machine or connect to a remote one, pick remote and follow the "instructions"

It could prove difficult to do if you are on a totally seperate network though, which is why I would use Remote Desktop:
On Server: right click My Computer, Properties, Remote Tab, check " Allow Users"
Add an account to allowed users
Forward port 3389 to the server, and set up a RDP connection on the XP workstation using the user accounts credentials that you allowed access for on the Server..
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Sometimes you might need to configure routing based not only on destination IP address, but also on a combination of destination IP address (or hostname) and destination port number. I will describe a method how to accomplish this with free tools. …
Before we dive into the marketing strategies involved with creating an effective homepage, it’s crucial that EE members know what a homepage is. In essence, a homepage is the introductory, or default page, of a website that typically highlights the …
The purpose of this video is to demonstrate how to set up the WordPress backend so that each page automatically generates a Mailchimp signup form in the sidebar. This will be demonstrated using a Windows 8 PC. Tools Used are Photoshop, Awesome…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question