Windows 2008 R2 Firewall odd question
I have an odd issue with the Windows firewall. Most our clients have the Novell Client also installed. We recently added Windows 2008 R2 servers to our 2003 forest. The Windows 2008 servers do have the host based firewall turned on and the Win 2003 DC's
do not. Now when the Windows 7 clients try to log in, they hit all the servers with authentication requests on port 524 the Novell port. The attempt is ignored by the Windows 2008 systems while the 2003 systems responed with a rejection. Since the install
of the 2008 boxes the Windows systems are repeatedly tyring to talk to the DC's on this port and will hang on startup and shutdown. They hang around 5 minutes on both startup and shut down. Removing the Novell client is and option and removing the Windows
fire wall on the server works also. Don't want to do either of these options. I opened port 524 on the host firewalls but they still ignore the traffic.
My question, why does the firewall still drop the packets instead of allowing them even after opening the port on the fire wall? Will it continue to filter based on something besides the rule? If I turn the firewall off then the server will reject the communication
or send a reset which should resolve the client issue. Is there another setting that is blocking traffic if the port is opened on the firewall but does not have a service using the port? I would like to keep the firewall on and open up port 524 and have the
server reject the client preventing it from trying over and over to log in and hanging the client.
November 4th, 2010 11:25pm
Sounds to me like you need more than port 524 open, usually this first port is the communication port and a secondary port is then opened on some comm systems. It has been 8 years since I have been a Netware admin so I can't speak from experience though.
I did do a Bing and I think my suspicions are correct though.
Check out the link below and see if that helps at all.
http://documents.made-it.com/novell.html
--
Paul Bergson
MVP - Directory Services
MCITP: Enterprise Administrator
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, Vista, 2003, 2000 (Early Achiever), NT4
http://www.pbbergs.com Twitter @pbbergs
Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.
Free Windows Admin Tool Kit Click here and download it now
November 5th, 2010 3:05pm
Hi,
If there is any update on this issue, please feel free to let us know.
We are looking forward to your reply.
Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.
November 8th, 2010 11:05am
Hi, i had the same problems like isabucket. After i had installed the newest novell client (Novell Client 4.91 SP5 for Windows IR1 + patch) the problem was away.
Free Windows Admin Tool Kit Click here and download it now
September 19th, 2011 9:53am