What ports need to be open to provide print services - firewall issue
We have two subnets (xxx.xxx.247.1-128 and xxx.xxx.247.129-256) on our network behind our firewall...a server (Windows 2012 DataCenter server) that I recently provisioned to be a print server sits in one subnet (xxx.xxx.247.123) and I have a PC (Windows 7) sitting in another subnet (xxx.xxx.247.134) that I want to add to it.
Normally when I add a printer, I use the wizard and enter the \\{servername} and a list of printers available will display. When I do this on the PC however, the print server will not show the list of printers as it does when I'm on a PC in the same subnet. I had our firewall administrator open printer ports (9100 and 515). He specified the rule as: xxx.xxx.247.128/25 -> xxx.xxx.247.123 on printer ports(9100 and 515).
Is there something else I need to be enabling that could be blocking .134 from seeing the list of printers available on .123?
Normally when I add a printer, I use the wizard and enter the \\{servername} and a list of printers available will display. When I do this on the PC however, the print server will not show the list of printers as it does when I'm on a PC in the same subnet. I had our firewall administrator open printer ports (9100 and 515). He specified the rule as: xxx.xxx.247.128/25 -> xxx.xxx.247.123 on printer ports(9100 and 515).
Is there something else I need to be enabling that could be blocking .134 from seeing the list of printers available on .123?
However, I think your problem is more likely to be one of permissions on the server. I do not know how your server is set up, but check its settings.
ASKER
Thanks for your comments hdhondt. I am working with our firewall administrator this morning to open 137-139 and 445 first...if that doesn't work I'll also try the SNMP ports.
What settings in particular do you think need to be reviewed on the server? It is functioning correctly as a print server when I add printers for PCs that are in the same subnet as the print server, just PCs that are in the other subnet that I have issues with.
What settings in particular do you think need to be reviewed on the server? It is functioning correctly as a print server when I add printers for PCs that are in the same subnet as the print server, just PCs that are in the other subnet that I have issues with.
Googling some more I found at least one case where port 445 was the culprit. If it isn't, is the server on the same domain as the PC? Are you running GPO?
You can try these suggestions:
http://smallbusiness.chron.com/print-servers-printers-not-showing-up-62171.html
You can also try connecting to the server as \\xxx.xxx.247.123
You can try these suggestions:
http://smallbusiness.chron.com/print-servers-printers-not-showing-up-62171.html
You can also try connecting to the server as \\xxx.xxx.247.123
ASKER
Our firewall admin opened port 445 and it still does not work. He claimed that 137-139 shouldn't be needed but now that it hasn't worked by opening 445, I'm going to see if he will open 137-139
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I guess I'm confused as to what settings my server would need to have modified. As I mentioned, it shows up just fine for PCs that are in the same subnet
Somehow the server distinguishes between the subnets.
What method of user authentication are you using? Are all PCs on the same domain?
What method of user authentication are you using? Are all PCs on the same domain?
ASKER
all PCs are on the same domain, user authentication is Windows based.
Do the printers show if you log into a PC as Administrator?
Thanks for the points jb61264, but what did you do to get it working?
For SMB to work, you need to open ports 137-139 and possibly 445.