About Me

My photo
This blog has been created to share technical information, interesting innovations that I notice on daily basis and Architectural/Consulting overview of various technologies. My areas of interest, on which I would be blogging, are VMware, Microsoft and Citrix Technologies. I hope you will enjoy this blog and share your experience with me.

Required Network Ports for Active Directory

Here is a listing of the port requirements for Active Directory domain, as well as optional ports:

Required Ports

Port No.

Protocol

Used by

Required for

1024-5000

TCP/UDP

RPC (dynamic response ports)

required for RPC to respond to communications

135

TCP

RPC (endpoint mapper) 

required to open the endpoint mapper to the destination for RPC communications

389

TCP/UDP

LDAP

required to bind to a DC

3268

TCP

LDAP GC 

required to bind to the GC function of a domain controller (extremely important for Exchange)

53

TCP/UDP

DNS

required for name resolution and Active Directory functionality as a whole

88

TCP/UDP

Kerberos

self explanatory

445

TCP

SMB

self explanatory

123

UDP

SNTP

required for time synchronization with a time source

 

 

ICMP

required for group policy detection, application, and MTU size detection, as well as other low level activities

 

Optional Ports

Port No.

Protocol

Used by

Required for

636

TCP

LDAP SSL 

required to bind to a DC using LDAP over SSL

3269

TCP

LDAP GC SSL 

required to bind to a GC using LDAP over SSL

137

UDP

NetBIOS name 

self explanatory

138

UDP

NetBIOS Netlogon and Browsing 

self explanatory

139

TCP

NetBIOS session 

self explanatory

42

TCP

WINS replication 

self explanatory

1723

TCP

PPTP

required if using PPTP VPN tunnel

PortQryUI is a very good to check the ports.

To download portqry:

http://www.microsoft.com/downloads/details.aspx?familyid=8355e537-1ea6-4569-aabb-f248f4bd91d0&displaylang=en

Description of the Portqry.exe command-line utility
http://support.microsoft.com/default.aspx?scid=kb;en-us;310099

For more information on port requirements, please see:

http://support.microsoft.com/support/kb/articles/q179/4/42.asp

For Exchange considerations:

http://support.microsoft.com/?kbid=259240
http://support.microsoft.com/default.aspx?scid=kb;en-us;280132

For SQL considerations:

http://support.microsoft.com/kb/q287932/

For SMS considerations:

http://support.microsoft.com/default.aspx?scid=kb;en-us;200898
http://support.microsoft.com/kb/q167128/

Don’t forget to leave your comments :)

Thanks,
Aresh

No comments:

My Blog List