Same way a guy who worked at a lumber yard for 5 years did.
J Don Guyer Systems Engineer - Information Services Prudential, Fox & Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 don.gu...@prufoxroach.com <mailto:don.gu...@prufoxroach.com> From: Raper, Jonathan - Eagle [mailto:jra...@eaglemds.com] Sent: Thursday, January 06, 2011 10:29 AM To: NT System Admin Issues Subject: OT question (was RE: AD and firewall ports) Ok, I'm curious. How does an MD end up becoming an MCSE? (serious question) Jonathan L. Raper, A+, MCSA, MCSE Technology Coordinator Eagle Physicians & Associates, PA jra...@eaglemds.com <BLOCKED::mailto:%20jra...@eaglemds.com> www.eaglemds.com <BLOCKED::http://www.eaglemds.com/> ________________________________ From: Thomas W Shinder MD [mailto:tshin...@tacteam.net] Sent: Thursday, January 06, 2011 9:50 AM To: NT System Admin Issues Subject: RE: AD and firewall ports Firewall guys are somewhat unclear regarding the relationship of "ports" and their implication in a security context. Often the easiest way to get around these guys is to use IPsec between the DMZ host and any other host on the intranet. Then you only need to allow UDP port 500. That makes the firewall guy happy and allows all protocols through the IPsec tunnel. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Thursday, January 06, 2011 8:33 AM To: NT System Admin Issues Subject: RE: AD and firewall ports IIRC that KB that describes restricting DCOM ports actually explicitly recommends 100... Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 From: joseph palmieri [mailto:jpalm...@yahoo.com] Sent: Wednesday, January 05, 2011 6:54 PM To: NT System Admin Issues Subject: AD and firewall ports Need assistance with firewall ports and active directory our server admin submitted a change request to open over 1000 port to support AD. The change was denied and resubmitted requesting a minimum of 100 ports to support RPC communications to a member server within our DMZ. Our firewall engineers stated while monitoring the firewall only 20 ports were communicated over and 100 ports are not needed. Has anyone had experience with this issue and can provide some clarity...are the server admin looking for an easy way out by requesting all these ports? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ________________________________ Any medical information contained in this electronic message is CONFIDENTIAL and privileged. It is unlawful for unauthorized persons to view, copy, disclose, or disseminate CONFIDENTIAL information. This electronic message may contain information that is confidential and/or legally privileged. It is intended only for the use of the individual(s) and/or entity named as recipients in the message. If you are not an intended recipient of this message, please notify the sender immediately and delete this material from your computer. Do not deliver, distribute or copy this message, and do not disclose its contents or take any action in reliance on the information that it contains. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin