Does anyone know which specific ports have to be opened on the server to allow Window/7 updates to run. I have a new SBS 2011 installation and Window/7 64 Bit client attached to it. When I tried to run updates they failed with error code 80072ee2. I ran the FixIT (which didn't fix it), added the Microsoft update websites to the "trusted" sites, which didn't help either. Then I dropped the firewall on the server temporarily (only for the local) and the updates came right in without a problem. For some reason the Firewall doesn't open ports automatically when applications are installed. I had to manually add Exchange and TrendMicro rules.