Needed some objects with the usual domain controller ports. I'm sure not all are required for all deployments for example some installs might be using LDAP (389) others LDAPS (636) or vice versa.
Taken from here:
https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd772723(v=ws.10)?redirectedfrom=MSDN
object-group service DC_PORTS_UDP udp
port-object eq 389
port-object eq 88
port-object eq 445
port-object eq 123
port-object eq 464
port-object eq 138
port-object eq 67
port-object eq 2535
port-object eq 137
object-group service DC_PORTS_TCP tcp
port-object eq 389
port-object eq 636
port-object eq 3268
port-object eq 3269
port-object eq 88
port-object eq 53
port-object eq 445
port-object eq 135
port-object eq 5722
port-object eq 464
port-object eq 9389
port-object eq 139
No comments:
Post a Comment