Active Directory to replication between Firewalls.

TCP RDP DNS Remote Desktop DNS Download DNS Queries WINS WINS echo-request ICMP info-request mast request timestamp Name Resolution Service NetBIOS Services Datagram Services (Browsing) Session Service (net use) SMB Remote Storm NTP Content Replication NTP NTP Content_Repl Kerberos-Secure Kerberos Kerberos_v5 Kerberos_v5 LDAP LDAP LDAP LDAP over SSL/TLS Global Catalog Global Catalog over SSL/TSL Active Directory Replication FRS RPCSS Dynamic 636 3268 3269 RPCSS Dynamic 389 389 636 88 + 464 88 + 464 507 750 Input Output 1025 123 123 139 445 445 137 137 138 42 42 8 15 17 13 3389 53 53 UDP ICMP

WINS Replication

Microsoft-CIFS (DS) Microsoft CIFS Microsoft-CIFS (DS) RPC Cert Services (+) RPC SNMP Agent SNMP Trap ASP.Net State Service Link State Algorithm Routing TCP High Ports > 1023 (Cert Services)

445 445 135 161 162 42424

SNMP

691

1024 - 65535

commands start here: -----------------------netsh firewall add portopening tcp 3389 139_tcp_AD_PORTS enable netsh firewall add portopening tcp 139 139_tcp_AD_PORTS enable subnet netsh firewall add portopening tcp 445 445_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 137 137_udp_AD_PORTS enable subnet netsh firewall add portopening udp 138 138_udp_AD_PORTS enable subnet netsh firewall add portopening tcp 53 53_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 53 53_udp_AD_PORTS enable subnet netsh firewall add portopening tcp 42 42_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 42 42_udp_AD_PORTS enable subnet netsh firewall add portopening tcp 137 137_tcp_AD_PORTS enable subnet netsh firewall add portopening tcp 1025 1025_tcp_AD_PORTS enable subnet netsh firewall add portopening tcp 123 123_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 123 123_udp_AD_PORTS enable subnet netsh firewall add portopening tcp 507 507_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 750 750_udp_AD_PORTS enable subnet netsh firewall add portopening tcp 88 88_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 88 88_udp_AD_PORTS enable subnet netsh firewall add portopening tcp 464 464_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 464 464_udp_AD_PORTS enable subnet netsh firewall add portopening udp 389 389_udp_AD_PORTS enable subnet netsh firewall add portopening udp 636 636_udp_AD_PORTS enable subnet netsh firewall add portopening udp 445 445_udp_AD_PORTS enable subnet netsh firewall add portopening udp 161 161_udp_AD_PORTS enable subnet netsh firewall add portopening tcp 162 162_tcp_AD_PORTS enable subnet netsh firewall add portopening tcp 42424 42424_tcp_AD_PORTS enable subnet

netsh firewall add portopening tcp 5000 5000_tcp_AD_PORTS enable subnet netsh firewall add portopening tcp 5001 5001_tcp_AD_PORTS enable subnet .... ports omitted due to post size limitations (tcp 5002-5099) ... netsh firewall add portopening tcp 5100 5100_tcp_AD_PORTS enable subnet netsh firewall add portopening udp 5000 5000_udp_AD_PORTS enable subnet netsh firewall add portopening udp 5001 5001_udp_AD_PORTS enable subnet .... more ports omitted due to post size limitations (udp 5002-5099) ... netsh firewall add portopening udp 5100 5100_udp_AD_PORTS enable subnet