Windows 2000 logon across a firewall.

[remy74]

I am trying to join a windows 2000 server to my active directory domain across a watchgaurd firebox 2. The server I want to join the domain is on the optional interface. All of my other Domain Control are on the trusted interface. When I try to join the domain I get the error:
The specified domain either does not exist or could not be contacted.

DNS is resolving good from the server. What ports do I need open for windows 2000 connectivity. I have opened the following ports already:
53
88
123
135
389
445
3268
1025 & 1026

What else do I need opened?

Thanks,
Jeremy

 

[Guest_imported]

53 UDP/TCP - keep for DNS
88 UDP/TCP - keep for kerberos
123 - NTP
135/TCP - keep for RPC
389/TCP - shouldn't need just to join a domain, only LDAP queries to DC
445/TCP - keep
3268/TCP - - shouldn't need just to join a domain, only LDAP queries to GC
1025 & 1026 - may not need

You will need to add 137/UDP, 138/UDP, and 139/TCP.

Good luck