AD服务器与客户端联系需要在防火墙上开放的端口
2012-10-06 00:20
1081 查看
Technorati Tags: 夏明亮,AD,端口,port,139 This article explains the key port requirement for Client computers and Domain Controllers communicating with each other.
Active Directory communication takes place using several ports. These ports are required by both client computers and Domain Controllers. As an example, when a client computer tries to find a domain controller it always sends a DNS Query over Port 53 to find the name of the domain controller in the domain.
The following is the list of services and their ports used for Active Directory communication:
・ UDP Port 88 for Kerberos authentication
・ UDP and TCP Port 135 for domain controllers-to-domain controller and client to domain controller operations.
・ TCP Port 139 and UDP 138 for File Replication Service between domain controllers.
・ UDP Port 389 for LDAP to handle normal queries from client computers to the domain controllers.
・ TCP and UDP Port 445 for File Replication Service
・ TCP and UDP Port 464 for Kerberos Password Change
・ TCP Port 3268 and 3269 for Global Catalog from client to domain controller.
・ TCP and UDP Port 53 for DNS from client to domain controller and domain controller to domain controller.
Opening above ports in Firewall between client computers and domain controllers, or between domain controllers, will enable Active Directory to function properly.
Active Directory communication takes place using several ports. These ports are required by both client computers and Domain Controllers. As an example, when a client computer tries to find a domain controller it always sends a DNS Query over Port 53 to find the name of the domain controller in the domain.
The following is the list of services and their ports used for Active Directory communication:
・ UDP Port 88 for Kerberos authentication
・ UDP and TCP Port 135 for domain controllers-to-domain controller and client to domain controller operations.
・ TCP Port 139 and UDP 138 for File Replication Service between domain controllers.
・ UDP Port 389 for LDAP to handle normal queries from client computers to the domain controllers.
・ TCP and UDP Port 445 for File Replication Service
・ TCP and UDP Port 464 for Kerberos Password Change
・ TCP Port 3268 and 3269 for Global Catalog from client to domain controller.
・ TCP and UDP Port 53 for DNS from client to domain controller and domain controller to domain controller.
Opening above ports in Firewall between client computers and domain controllers, or between domain controllers, will enable Active Directory to function properly.
相关文章推荐
- AD Exchange Lync 服务器需要想客户端开放的防火墙端口
- SharePoint 2010服务器场的防火墙需要开放哪些端口?
- 域服务器安装防火墙需要开放哪些端口客户机才能登录
- 如果域控(domain controller)在防火墙内, 那么需要开放哪些端口才能让墙外的机器正常连接domain controller呢?
- tfs需要对防火墙开放的端口
- 当AD服务器置于防火墙内时,所需开放的端口
- NetScaler与后台XD环境之前需要开放的防火墙端口
- 连接路由器上面的服务,必须先查看服务是在什么端口上面监听的 ,然后让防火墙开放端口,客户端才可以访问。
- 关于NetScaler与后台XD环境之前需要开放的防火墙端口
- 运行cPanel服务,配置防火墙策略,应该开放哪些端口?
- Linux防火墙开放端口的问题
- CentOS防火墙开放端口
- CentOS防火墙开启、关闭以及开放指定端口
- Linux 防火墙开放特定端口 (iptables)
- 【Linux】CentOS 7通过Firewall开放防火墙端口
- Linux修改防火墙开放端口
- Linux 防火墙开放特定端口
- Linux 防火墙开放特定端口 (iptables)
- K3开放防火墙端口(V12.3)