AD and DNS are relatively easy, it is the RPC that is going to kill you. If you want to have terrible fun supporting AD, I highly recommend firewalling DCs from each other and from clients.
joe -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Matt Brown Sent: Wednesday, March 23, 2005 2:25 PM To: ActiveDir@mail.activedir.org Subject: [ActiveDir] Domain Controller Firewalls Do any of you run the windows firewall on your Domain Controllers? If so where would I find what ports need to be open for Active Directory & DNS? Thanks, -- Matt Brown [ SELECT * FROM LDAP_Servers WHERE AD > OpenLDAP ] Information Technology System Specialist Eastern Washington University List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/List.aspx List FAQ : http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/