Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Windows 2003 Server Domain Controller Firewall Enabled Communication Problems.

Posted on 2007-04-09
4
Medium Priority
?
392 Views
Last Modified: 2012-05-05
We operate in a W2K3 AD domain.  The domain has two DCs replicating one another.  The Primary DC is W2K3 R2 SP-2, and the alternate DC is W2K3, SP-2.  If I enable the firewall on either of these DCs, FRS will not replicating (Event ID:13508), and clients cannot resolve DNS or possibly RPC connection problems.  I can say that if the firewalls are disabled these problems go away.  I followed the steps as per article KB555381 (How to configure Windows Server 2003 SP1 Firewall for a Domain Controller) on both DCs and the communications problems still exist.  I modified the registry and opened all the suggested ports, enabled the firewalls and rebooted both DCs.  After the reboot and the firewalls enabled the same problems exist.  At this point I disabled the firewalls until we can figure out how to correct the problem.  Any feedback would be appreciated.  
0
Comment
Question by:cmp119
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 70

Accepted Solution

by:
KCTS earned 1000 total points
ID: 18875261
The recommended way to set this up is to use the Security Configuration WIzard. See http://www.microsoft.com/windowsserver2003/technologies/security/configwiz/default.mspx
There are lots of links on in the article to detailed information and downloads.
0
 
LVL 48

Assisted Solution

by:Jay_Jay70
Jay_Jay70 earned 1000 total points
ID: 18880912
cmp119,

not sure who wrote this but he has my vote 100%
http://www.howtonetworking.com/donot/2003wf25.htm

Regards,

James
0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A hard and fast method for reducing Active Directory Administrators members.
Let's recap what we learned from yesterday's Skyport Systems webinar.
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

670 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question