Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Exchange 5.5 tcp ports 1
- Thread starter age
- Start date
- Thread starter
- #2
- Thread starter
- #4
-
1
- #5
HI!
There are specific articles for that scenario in MS and other web sites.
If you are connecting remote sites via the Internet or even via a dedicated private (but relatively slow and/or filter) your best choice is to use SMTP connector.
That way you both compress and control replication traffic, and you also avoid problems with filtering since you use only port 25.
If you use Site connector over a filtering link, you can configure the servers to use staticaly defined TCP ports only and not dynamic as mentioned by you (Age).
The howto can be found searching the MS KB archive.
The best and fastest solution is AAARRRPPP:
Ask Ask Ask Read Read Read Plan Plan Plan
You've done part of the AAA, now is a good time for the other steps.
Bye
Yizhar
Yizhar Hurwitz
There are specific articles for that scenario in MS and other web sites.
If you are connecting remote sites via the Internet or even via a dedicated private (but relatively slow and/or filter) your best choice is to use SMTP connector.
That way you both compress and control replication traffic, and you also avoid problems with filtering since you use only port 25.
If you use Site connector over a filtering link, you can configure the servers to use staticaly defined TCP ports only and not dynamic as mentioned by you (Age).
The howto can be found searching the MS KB archive.
The best and fastest solution is AAARRRPPP:
Ask Ask Ask Read Read Read Plan Plan Plan
You've done part of the AAA, now is a good time for the other steps.
Bye
Yizhar
Yizhar Hurwitz
- Thread starter
- #6
Thanks Yizhar for the help... I have the KB articles concerning statically defining the tcp ports (I do all my asking and reading at once, to get as much information as possible)... We plan to use site connectors - we are going to have a vpn in place for this shortly, but I'm being pushed to get the 2 servers connected prior to the vpn being set up, for test purposes. I'm going to ask our network guys to allow the 2 servers access to each other via the internet through the routers at each end. I'm just concerned about security (although these servers are currently just test servers, and not live ones).
Thanks for all your comments. Any more advice or experiences with this would be much appreciated.
Adrian
Thanks for all your comments. Any more advice or experiences with this would be much appreciated.
Adrian
HI Again.
The simpliest way is to allow all TCP and UDP traffic between those 2 servers,
(this will not allow access from other hosts, but might be vulnerable to spoofing attacks.
A more strict filtering will allow these ports, in both directions:
TCP 139 (for netbios)
UDP 137
UDP 138
TCP 135 (for MS RPC)
and all TCP ports above 1023, since data transfer itself uses a random port unless you tweak registry to use a static one.
I've took the info from here:
And it will probably help you also even if not directly related to your scenario.
Bye
Yizhar
Yizhar Hurwitz
The simpliest way is to allow all TCP and UDP traffic between those 2 servers,
(this will not allow access from other hosts, but might be vulnerable to spoofing attacks.
A more strict filtering will allow these ports, in both directions:
TCP 139 (for netbios)
UDP 137
UDP 138
TCP 135 (for MS RPC)
and all TCP ports above 1023, since data transfer itself uses a random port unless you tweak registry to use a static one.
I've took the info from here:
And it will probably help you also even if not directly related to your scenario.
Bye
Yizhar
Yizhar Hurwitz
- Status
Similar threads
- Locked
- Helpful tip
- Locked
- Question
