I am in process of configuring trusts between a 2003 forest and 2000 forest through a firewall . Scenario: 2003 forest single domain 2000 forest empty root, 8 child domains
Question: Do I need to open ports 135,137 and 445 from EVERY server in both domains or just say the pdc's? I have successfully created trusts between 2003 domain and 2000 root domain and 1 child domain. The 2003 domain has only 2 dc's and both 2000 root domain and the 1child domain have 3 dc's each, this was easy enough to create firewall rule specifing ports from all servers being there is only 8. Is this correct or overkill? Reason I am asking is some of the other domains have upwards of 50-60 dc's. I do not want to ask my WAN guys to create these rules unless it is absolutely necessary. If I do only need rules for pdc's would it be wise to add 2nd dc to rule in case pdc goes down? Would that break trust? This E-mail, including any attachments, may be intended solely for the personal and confidential use of the sender and recipient (s) named above. This message may include advisory, consultative and/or deliberative material and, as such, would be privileged and confidential and not a public document. Any Information in this e-mail identifying a client of the department of Human Services is confidential. If you have received this e-mail in error, you must not review, transmit, convert to hard copy, copy, use or disseminate this e-mail or any attachments to it and you must delete this message. You are requested to notify the sender by return e-mail.
begin:vcard n:Shukovsky;John tel;cell:609-226-7553 tel;work:609-292-5921 x-mozilla-html:FALSE org:NJDHS-Office of Information Systems;Windows Networking Services Group adr:;;;;;; version:2.1 email;internet:[EMAIL PROTECTED] title:System Engineer fn:John Shukovsky Jr end:vcard