Solved

Windows 2003 Server Domain Controller Firewall Enabled Communication Problems.

Posted on 2007-04-09
4
385 Views
Last Modified: 2012-05-05
We operate in a W2K3 AD domain.  The domain has two DCs replicating one another.  The Primary DC is W2K3 R2 SP-2, and the alternate DC is W2K3, SP-2.  If I enable the firewall on either of these DCs, FRS will not replicating (Event ID:13508), and clients cannot resolve DNS or possibly RPC connection problems.  I can say that if the firewalls are disabled these problems go away.  I followed the steps as per article KB555381 (How to configure Windows Server 2003 SP1 Firewall for a Domain Controller) on both DCs and the communications problems still exist.  I modified the registry and opened all the suggested ports, enabled the firewalls and rebooted both DCs.  After the reboot and the firewalls enabled the same problems exist.  At this point I disabled the firewalls until we can figure out how to correct the problem.  Any feedback would be appreciated.  
0
Comment
Question by:cmp119
4 Comments
 
LVL 70

Accepted Solution

by:
KCTS earned 250 total points
ID: 18875261
The recommended way to set this up is to use the Security Configuration WIzard. See http://www.microsoft.com/windowsserver2003/technologies/security/configwiz/default.mspx
There are lots of links on in the article to detailed information and downloads.
0
 
LVL 48

Assisted Solution

by:Jay_Jay70
Jay_Jay70 earned 250 total points
ID: 18880912
cmp119,

not sure who wrote this but he has my vote 100%
http://www.howtonetworking.com/donot/2003wf25.htm

Regards,

James
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Resolve DNS query failed errors for Exchange
This article runs through the process of deploying a single EXE application selectively to a group of user.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now