Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos

Security Basics: Re: Open ports to establish a one-way trust

Re: Open ports to establish a one-way trust

From: Eric McCarty <eric_at_piteduncan.com>
Date: Tue, 1 Mar 2005 10:15:30 -0800

Your firewall logs will tell you what traffic is being dropped,
add/modify your rulesets accordingly.

Eric

On Tue, 2005-03-01 at 10:15 -0600, Ju Ne wrote:
> We have a domain in our WAN that needs an Active Directory
> one-way trust established with our domain. The change has been made in
> Active Directory but we have been unable to test this new trust? What ports
> need to be opened at the firewall to allow this trust from a firewall
> perspective? Are any of the ports listed below required for this trust?
>
> TCP 135 Microsoft RPC
> UDP 137 Netbios-ns
> UDP 138 Netbios-dgm
> TCP 139 Netbios
> TCP 42 - WINS, Nameserv
> TCP/UDP 389- LDAP
> TCP 636 - SLDAP
> TCP 3268 - MSFT-GC
> TCP 3269 -MSFT-GC-SSL
> TCP/UDP 53 -DNS
> TCP/UDP 88 - Kerberos, www
> TCP 445 - SMB
>
> Thanks,
>
> Djembe
>
> _________________________________________________________________
> FREE pop-up blocking with the new MSN Toolbar get it now!
> http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/
> 

-- 
Eric C. McCarty
Systems Administrator
Pite Duncan & Melmet, LLP
eric_at_piteduncan.com
619 590-1300 x 2060

Received on Mar 02 2005
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]