Domain Trust Ports Firewall

I have two active directory domains in two different forests.

Domain trust ports firewall. Below is a list of ports which need to be enabled on the firewall for a trust relationship. Here are some of the ports that you will need to open on both ends if you want to configure a domain trust across the firewall. Netbios ports as listed for windows nt are also required for windows 2000 and windows server 2003 when trusts to domains are configured that support only netbios based communication. Therefore ports rules may have to be mirrored.

Service overview and network port requirements for the windows server system for the operation of the trust this port is not required it is used for trust creation only. I m going to establish a trust between two separate domains w2k3 r2. I need to create a two way forest trust between the two domains and forest. Netbios ports as listed for windows nt are also required for windows 2000 and server 2003 when trusts to domains are configured that support only netbios based communication.

Examples are windows nt based operating systems or third party domain controllers that are based on samba. Then run the domains trusts option between dcs or between dcs and any machine other servers you want to promote or even from a client machine or from the bridgeheads in each site to the other bridgehead in the other site pretty much anywhere that you want to test if there are any blocked ad ports. Each domain has two dcs all of them windows server 2008 r2. When creating trust relationships communications between the two domains is carried out over a number of protocols with each protocol using different tcp ip port.

The following ports need to be opened if you have once of the following. Trust relationship between two win2k based or between two win2k3. Restricting active directory replication traffic and client rpc traffic to a specific port domain controllers and active directory section in 832017. Port 135 tcp or udp for remote procedure call rpc service.

The domains are also in different networks with a firewall connecting them. To establish a domain trust or a security channel across a firewall the following ports must be opened. I d like to confirm what ports on the firewall need to be opened to allow. Be aware that there may be hosts functioning with both client and server roles on both sides of the firewall.

A mixed mode domain with either nt domain controllers or legacy clients 2. Examples are windows nt based operating systems or third party domain controllers that are based on samba.