Solved

domain controllers are trying to communicate with linux hosts on 135, 137, 139 and 445. is this normal? if so, why is it normal?

Posted on 2014-10-07
2
181 Views
Last Modified: 2014-10-10
hello! we have 2 domain controllers in 1 site trying to communicate with some linux hosts that are behind a firewall at another site.
ports 135, 137, 139 and 445
they are getting blocked by a firewall between the 2 networks, but im wondering why the windows domain controllers are trying to communicate with them in the first place
the hosts ARE listed in DNS (we are using active directory integrated DNS)
would that be why?
0
Comment
Question by:jsctechy
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 8

Accepted Solution

by:
R_Edwards earned 500 total points
ID: 40366691
Jsctechy,
     You are very close, Windows has to has specific ports open to work as a domain controller, and because you have Linux Hosts and I figure you are authenticating from the Linux host to AD.
 here is a small explanation of the ports:

TCP 135 Replication RPC, EPM
     
TCP 137 NetBIOS Name resolution NetBIOS Name resolution
     
TCP 139 User and Computer Authentication, Replication DFSN, NetBIOS Session Service, NetLogon

TCP and UDP 445 Replication, User and Computer Authentication, Group Policy, Trusts SMB, CIFS, SMB2, DFSN, LSARPC, NbtSS, NetLogonR, SamR, SrvSvc

/r
-=Richard
0
 
LVL 35

Expert Comment

by:Seth Simmons
ID: 40366800
are there any domain controllers gone but not cleaned up in AD that had IP address(es) now used by one of the linux systems?  just having an A record won't cause that traffic
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article demonstrates probably the easiest way to configure domain-wide tier isolation within Active Directory. If you do not know tier isolation read https://technet.microsoft.com/en-us/windows-server-docs/security/securing-privileged-access/s…
A hard and fast method for reducing Active Directory Administrators members.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Suggested Courses

628 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question