Solved

domain controllers are trying to communicate with linux hosts on 135, 137, 139 and 445. is this normal? if so, why is it normal?

Posted on 2014-10-07
2
170 Views
Last Modified: 2014-10-10
hello! we have 2 domain controllers in 1 site trying to communicate with some linux hosts that are behind a firewall at another site.
ports 135, 137, 139 and 445
they are getting blocked by a firewall between the 2 networks, but im wondering why the windows domain controllers are trying to communicate with them in the first place
the hosts ARE listed in DNS (we are using active directory integrated DNS)
would that be why?
0
Comment
Question by:jsctechy
2 Comments
 
LVL 8

Accepted Solution

by:
R_Edwards earned 500 total points
ID: 40366691
Jsctechy,
     You are very close, Windows has to has specific ports open to work as a domain controller, and because you have Linux Hosts and I figure you are authenticating from the Linux host to AD.
 here is a small explanation of the ports:

TCP 135 Replication RPC, EPM
     
TCP 137 NetBIOS Name resolution NetBIOS Name resolution
     
TCP 139 User and Computer Authentication, Replication DFSN, NetBIOS Session Service, NetLogon

TCP and UDP 445 Replication, User and Computer Authentication, Group Policy, Trusts SMB, CIFS, SMB2, DFSN, LSARPC, NbtSS, NetLogonR, SamR, SrvSvc

/r
-=Richard
0
 
LVL 34

Expert Comment

by:Seth Simmons
ID: 40366800
are there any domain controllers gone but not cleaned up in AD that had IP address(es) now used by one of the linux systems?  just having an A record won't cause that traffic
0

Featured Post

Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
OfficeMate Freezes on login or does not load after login credentials are input.
This tutorial will show how to configure a new Backup Exec 2012 server and move an existing database to that server with the use of the BEUtility. Install Backup Exec 2012 on the new server and apply all of the latest hotfixes and service packs. The…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now