Active Directory and Firewall Ports

I found it hard to find a definitive list on the internet for what ports needed opening for Active Directory to replication between Firewalls. Here are my findings and all is working so, hope this helps someone else.

		TCP	UDP	ICMP
RDP	Remote Desktop	3389
DNS	DNS Download	53
DNS	DNS Queries		53
WINS Replication	WINS	42
WINS Replication	WINS		42
ICMP	echo-request			8
	info-request			15
	mast request			17
	timestamp			13
NetBIOS Services	Name Resolution Service	*137*	137
	Datagram Services (Browsing)		138
	Session Service (net use)	139
SMB	Input	445
SMB	Output		445
Remote Storm		1025
NTP	NTP	123
NTP	NTP		123
Content Replication	Content_Repl	507
Kerberos	Kerberos-Secure		750
	Kerberos_v5	88 + 464
	Kerberos_v5		88 + 464
LDAP	LDAP	389
	LDAP		389
	LDAP over SSL/TLS	636	636
	Global Catalog	3268
	Global Catalog over SSL/TSL	3269
Replication	Active Directory	RPCSS Dynamic
Replication	FRS	RPCSS Dynamic
Microsoft CIFS	Microsoft-CIFS (DS)	445
Microsoft CIFS	Microsoft-CIFS (DS)		445
RPC – Cert Services (+)	RPC	135
SNMP	SNMP Agent		161
SNMP	SNMP Trap	162
ASP.Net State Service		42424
Link State Algorithm Routing		691
TCP – High Ports (Cert Services)	> 1023	1024 – 65535

This article is part of the GWB Archives. Original Author: Jason Miles

Related Posts

Replatforming Guide: Pros, Cons, and Impact

Deciding to replatform is no small feat; it’s like setting sails for new horizons with your digital presence. Weighing the

Cypress vs Selenium: Why Cypress is Better!

Navigating the competitive landscape of web testing tools, Cypress emerges as a noteworthy contender, outshining Selenium with its cutting-edge advantages.