NTDS and replication!

J

Jacob Lund

Hi,



Due to firewall restrictions I have to be able to control how my domain
servers replicate with each other! I have 6 domain controllers and when I
look in "Active Directory Sites and Services" i can se how they replicate AD
information!



Now I setup how that should replicate, but for some reason the servers
automatically add new connections for replication - they are named
<automatically generated>. Now I get a lot of errors in my Event viewer
because these replications are denied connection by the firewall.



My question is - how do I avoid this automatically generation of replication
connections between the domain controllers?



Thanks,

Jacob
 
N

Neil Ruston

Surely a more elegant solution would be to create firewall
rules which permit the DCs to replicate across the
firewall.

e.g. allow all DCs inside the firewall to communicate with
all DCs outside the firewall using the required ports only
(53/88/135/137/138/389 etc) and mirrored pair statements.

I believe MS have published a paper which explains how
this may be done on the Windows 2000 web site. (I looked
but couldn't find :)

Neil
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

HELP? replication permissions 3
Innundated with 1864 and 1862 replication errors after introduction of "lag-site" (longish) 0
Force replication between two DCs in different sites 2
Replication issues 4
AD Sites and Services 2
AD replication issue 4
NTDS Replication Warning 6
The destination server is currently rejecting replication requests 1

Top