Solved

domain controllers are trying to communicate with linux hosts on 135, 137, 139 and 445. is this normal? if so, why is it normal?

Posted on 2014-10-07
2
175 Views
Last Modified: 2014-10-10
hello! we have 2 domain controllers in 1 site trying to communicate with some linux hosts that are behind a firewall at another site.
ports 135, 137, 139 and 445
they are getting blocked by a firewall between the 2 networks, but im wondering why the windows domain controllers are trying to communicate with them in the first place
the hosts ARE listed in DNS (we are using active directory integrated DNS)
would that be why?
0
Comment
Question by:jsctechy
2 Comments
 
LVL 8

Accepted Solution

by:
R_Edwards earned 500 total points
ID: 40366691
Jsctechy,
     You are very close, Windows has to has specific ports open to work as a domain controller, and because you have Linux Hosts and I figure you are authenticating from the Linux host to AD.
 here is a small explanation of the ports:

TCP 135 Replication RPC, EPM
     
TCP 137 NetBIOS Name resolution NetBIOS Name resolution
     
TCP 139 User and Computer Authentication, Replication DFSN, NetBIOS Session Service, NetLogon

TCP and UDP 445 Replication, User and Computer Authentication, Group Policy, Trusts SMB, CIFS, SMB2, DFSN, LSARPC, NbtSS, NetLogonR, SamR, SrvSvc

/r
-=Richard
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 40366800
are there any domain controllers gone but not cleaned up in AD that had IP address(es) now used by one of the linux systems?  just having an A record won't cause that traffic
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
A project that enables an administrator to perform actions within a user session context not just at the time of login but any time later on day(s) or week(s) later.
This tutorial will give a short introduction and overview of Backup Exec 2012 and how to navigate and perform basic functions. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as conneā€¦
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

685 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question