I have a windows 2000 member server that I just put into our DMZ. I
configured the firewall to allow the necesary ports as specified by
Microsoft (88, 123, 135, 389, 445, 3268, and one port above 1024, which i
set in the DCs registry
HKLM/System/CurrentControlSet/Services/NTDS/Parameters). After doing this I
had an extremely slow boot process (20 minutes for boot and another 20 for
login). After reviewing our firewall logs, I discovered that a great deal of
packets were being dropped with a destination port of 1026. I opened that up
and now it works great. Does anyone know why I needed to open this port,
despite any reference to it from any document I can find for putting a
member server in a DMZ? Thanks for your help.
--Jared
|
Similar Threads
