I'm looking at the list of ports required for a domain to function and finding it rather overwhelming. Does anybody have a list of ports that need to be open between VLANs for say, an example domain which is freshly built and has nothing installed. DC in VLAN1, server in VLAN2. I just want the base requirements for joining the domain and having it work without issues. http://support.microsoft.com/kb/179442 The section for Server 2008 R2, is that just for trusts or is that all the ports that need to be open within a single domain between all domain servers?

Hi, read carefully this doc http://www.microsoft.com/downloads/en/details.aspx?familyid=C2EF3846-43F0-4CAF-9767-A9166368434E&displaylang=en HTHEdoardo Benussi - Microsoft MVP Management Infrastructure - Systems Administration https://mvp.support.microsoft.com/Profile/Benussi Windows Server Italian Forum Moderator edo[at]mvps[dot]org

Hello, see here about the port requirements in Active directory domain services: http://technet.microsoft.com/en-us/library/dd772723(WS.10).aspxBest regards Meinolf Weber Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

Thanks for the pointers. Can someone clear something up for me: The dynamic RPC port range, do I literally have to go my networks team and say "I need ports 40,000 to 60,000 open between VLANs"? Because if so I'm going to be laughed out of the building. Surely I'm misunderstanding the documentation? Can anyone point me at an already worded request to "networks"? If I can see a fake request I'll probably click and understand.

Thanks for the pointers. Can someone clear something up for me: The dynamic RPC port range, do I literally have to go my networks team and say "I need ports 40,000 to 60,000 open between VLANs"? Because if so I'm going to be laughed out of the building. Surely I'm misunderstanding the documentation? you have to follow Meinolf's link and in particular this reported section: Restricting RPC to a specific port RPC traffic is used over a dynamic port range as described in the previous section, “Default dynamic port range.” To restrict RPC traffic to a specific port, see article 224196 in the Microsoft Knowledge Base (http://go.microsoft.com/fwlink/?LinkID=133489). Edoardo Benussi - Microsoft MVP Management Infrastructure - Systems Administration https://mvp.support.microsoft.com/Profile/Benussi Windows Server Italian Forum Moderator edo[at]mvps[dot]org

Hi, If there is any update on this issue, please feel free to let us know. We are looking forward to your reply. Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.