Solved

Exchange ports for outlook client communication.

Posted on 2013-06-12
6
1,189 Views
Last Modified: 2013-06-12
I have been asked to clarify what type of mail activity is using TCP 40740.  I pulled netstat on the CAS server and found a number of ports on the exchange server that are listening and servicing client systems.  I was looking for a document that explained how the ports are used and that they were servicing outlook client requests.

Server:  2008 with exchange 2010.
Outlook 2010 clients.

Below are the listening ports and then some of the client connections in question.

Proto  Local Address          Foreign Address        State
  TCP    0.0.0.0:25             MAIL01:0         LISTENING
  TCP    0.0.0.0:80             MAIL01:0         LISTENING
  TCP    0.0.0.0:110            MAIL01:0         LISTENING
  TCP    0.0.0.0:135            MAIL01:0         LISTENING
  TCP    0.0.0.0:143            MAIL01:0         LISTENING
  TCP    0.0.0.0:443            MAIL01:0         LISTENING
  TCP    0.0.0.0:445            MAIL01:0         LISTENING
  TCP    0.0.0.0:587            MAIL01:0         LISTENING
  TCP    0.0.0.0:593            MAIL01:0         LISTENING
  TCP    0.0.0.0:808            MAIL01:0         LISTENING
  TCP    0.0.0.0:993            MAIL01:0         LISTENING
  TCP    0.0.0.0:995            MAIL01:0         LISTENING
  TCP    0.0.0.0:2002           MAIL01:0         LISTENING
  TCP    0.0.0.0:3389           MAIL01:0         LISTENING
  TCP    0.0.0.0:5060           MAIL01:0         LISTENING
  TCP    0.0.0.0:5067           MAIL01:0         LISTENING
  TCP    0.0.0.0:6001           MAIL01:0         LISTENING
  TCP    0.0.0.0:6002           MAIL01:0         LISTENING
  TCP    0.0.0.0:6004           MAIL01:0         LISTENING
  TCP    0.0.0.0:6005           MAIL01:0         LISTENING
  TCP    0.0.0.0:6006           MAIL01:0         LISTENING
  TCP    0.0.0.0:6007           MAIL01:0         LISTENING
  TCP    0.0.0.0:8081           MAIL01:0         LISTENING
  TCP    0.0.0.0:8400           MAIL01:0         LISTENING
  TCP    0.0.0.0:8402           MAIL01:0         LISTENING
  TCP    0.0.0.0:8404           MAIL01:0         LISTENING
  TCP    0.0.0.0:12706          MAIL01:0         LISTENING
  TCP    0.0.0.0:18037          MAIL01:0         LISTENING
  TCP    0.0.0.0:18043          MAIL01:0         LISTENING
  TCP    0.0.0.0:40551          MAIL01:0         LISTENING
  TCP    0.0.0.0:40558          MAIL01:0         LISTENING
  TCP    0.0.0.0:40615          MAIL01:0         LISTENING
  TCP    0.0.0.0:40618          MAIL01:0         LISTENING
  TCP    0.0.0.0:40677          MAIL01:0         LISTENING
  TCP    0.0.0.0:40691          MAIL01:0         LISTENING
  TCP    0.0.0.0:40736          MAIL01:0         LISTENING
  TCP    0.0.0.0:40740          MAIL01:0         LISTENING
  TCP    0.0.0.0:40776          MAIL01:0         LISTENING
  TCP    0.0.0.0:40790          MAIL01:0         LISTENING
  TCP    0.0.0.0:40791          MAIL01:0         LISTENING
  TCP    0.0.0.0:40805          MAIL01:0         LISTENING
  TCP    0.0.0.0:40847          MAIL01:0         LISTENING
  TCP    0.0.0.0:40855          MAIL01:0         LISTENING
  TCP    0.0.0.0:40856          MAIL01:0         LISTENING
  TCP    0.0.0.0:41264          MAIL01:0         LISTENING
  TCP    0.0.0.0:41289          MAIL01:0         LISTENING
  TCP    0.0.0.0:47001          MAIL01:0         LISTENING
  TCP    0.0.0.0:48000          MAIL01:0         LISTENING
  TCP    0.0.0.0:48001          MAIL01:0         LISTENING
  TCP    0.0.0.0:48004          MAIL01:0         LISTENING
  TCP    0.0.0.0:48005          MAIL01:0         LISTENING
  TCP    0.0.0.0:48006          MAIL01:0         LISTENING
  TCP    0.0.0.0:48007          MAIL01:0         LISTENING
  TCP    0.0.0.0:48008          MAIL01:0         LISTENING
  TCP    0.0.0.0:48009          MAIL01:0         LISTENING
  TCP    0.0.0.0:48010          MAIL01:0         LISTENING
  TCP    0.0.0.0:48011          MAIL01:0         LISTENING
  TCP    0.0.0.0:48012          MAIL01:0         LISTENING
  TCP    0.0.0.0:49415          MAIL01:0         LISTENING
  TCP    0.0.0.0:57944          MAIL01:0         LISTENING
  TCP    0.0.0.0:64327          MAIL01:0         LISTENING

Established

TCP    10.6.133.21:40740      99LP-PBGXMBY:49304     ESTABLISHED
TCP    10.6.133.21:40740      99LP-PBGXMBY:49305     ESTABLISHED
TCP    10.6.133.21:40740      99LP-PB529BE:49385     ESTABLISHED
TCP    10.6.133.21:40740      99LP-PB529BE:49389     ESTABLISHED
TCP    10.6.133.21:40740      99LP-PB535HN:49345     ESTABLISHED
TCP    10.6.133.21:40618      99LP-R8H9Z68:52870     ESTABLISHED
TCP    10.6.133.21:40618      99LP-R8H9Z68:55235     ESTABLISHED
TCP    10.6.133.21:40618      99LP-R83KCLV:58185     ESTABLISHED
0
Comment
Question by:Deitsch
6 Comments
 
LVL 41

Expert Comment

by:Amit
Comment Utility
I don't see port 40740 used by Exchange, check following KB what ports are used by Exchange
http://technet.microsoft.com/en-us/library/bb331973%28v=exchg.141%29.aspx
0
 
LVL 41

Accepted Solution

by:
Amit earned 125 total points
Comment Utility
Use below command
Netstat -a -n -o

Check the PID in task manager to find more information.
0
 
LVL 11

Expert Comment

by:James Hodge
Comment Utility
Port 40740 is not assigned not anything that I know of. Definately not Exchange.
0
Complete Microsoft Windows PC® & Mac Backup

Backup and recovery solutions to protect all your PCs & Mac– on-premises or in remote locations. Acronis backs up entire PC or Mac with patented reliable disk imaging technology and you will be able to restore workstations to a new, dissimilar hardware in minutes.

 
LVL 38

Assisted Solution

by:Adam Brown
Adam Brown earned 125 total points
Comment Utility
Exchange 2010 utilizes a random port in a very sizable range for RPC access between server and client and server to server communications by default. This is referred to as the RPC Dynamic Range and goes from port 6005 to port 59530 This should only be accessible on the local network. External Outlook Clients should utilize RPC over HTTPS or Outlook Anywhere to communicate. That only goes over port 443.

http://social.technet.microsoft.com/wiki/contents/articles/864.configure-static-rpc-ports-on-an-exchange-2010-client-access-server.aspx#ExchangeTenRPCClientAccessService has some information on what this does and how to limit the available ports. Note that you don't want to drop the number of available ports too low or you could end up with communication failures and bottlenecks.
0
 
LVL 41

Expert Comment

by:Amit
Comment Utility
Also there is reg key to limit that port range.
0
 

Author Closing Comment

by:Deitsch
Comment Utility
Amitkulshrestha netstat options for getting the PID showed what process was using the connections.  All were Microsoft.rpc.clientaccess.service.exe.

Acbrown2010 provided the statement and link pointing to the RPC Dynamic Range.
0

Featured Post

Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

Join & Write a Comment

Suggested Solutions

We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
Marketers need statistics and metrics like everybody else needs oxygen. In this article we explain how to enable marketing campaign statistics for Microsoft Exchange mail.
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now