RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread Rick Kingslan
David,   If you really, really want to use the absolute minimum ports through a firewall, use IPSec tunnel mode.  However, your Network Engineers (or whoever manages your Firewalls) may not like it.  Reason?  Likely the same reason that I got when I suggested this at a previous employer:

RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread Rick Kingslan
You’ve likely seen this, but it does describe ports needed for REPLICATION……  However, Steve does talk about the benefits of using IPSec through a firewall……   Rick   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of David Adner Sent: Wednesday, August 24, 2005 10:3

RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread Brian Desmond
, 2005 10:51 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Ports during authentication/logons...   David,   If you really, really want to use the absolute minimum ports through a firewall, use IPSec tunnel mode.  However, your Network Engineers (or whoever manages your Firewalls

RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread David Adner
ednesday, August 24, 2005 10:51 PMTo: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Ports during authentication/logons... David,   If you really, really want to use the absolute minimum ports through a firewall, use IPSec tunnel mode.  However, your Network Engineers (or whoever manages your Firewalls) may no

RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread Tony Murray
ugust 2005 4:11 p.m.To: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Ports during authentication/logons... I would normally look at the IPSec route, too, but it's not (as far as I know) supported by MS between domain members and DC's.  It's supposed member<->member and

RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread Tony Murray
rsday, 25 August 2005 4:39 p.m.To: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Ports during authentication/logons... Yes, member server to DC using IPSec is not supported.  Well at least it wasn't in Windows 2000:   http://support.microsoft.com/default.aspx?scid=kb;en-us;Q254949   No

RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread David Adner
MurraySent: Thursday, 25 August 2005 4:39 p.m.To: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Ports during authentication/logons... Yes, member server to DC using IPSec is not supported.  Well at least it wasn't in Windows 2000:   http://support.microsoft.com/default.aspx?scid=kb;en-u

RE: [ActiveDir] Ports during authentication/logons...

2005-08-24 Thread Rick Kingslan
Kingslan Sent: Wednesday, August 24, 2005 10:51 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Ports during authentication/logons... David,   If you really, really want to use the absolute minimum ports through a firewall, use IPSec tunnel mode.  However, your Network Engineers (or wh