Microsoft
Software
Hardware
Network
Question : Windows 2008R2 static ports for ntds/rpc/ntfrs
On our past Windows 2003 domain controllers, we used the following registry settings to restrict the port usage on various AD-related services to a single, static port each:
[HKEY_LOCAL_MACHINE\SYSTEM
\CurrentCo
ntrolSet\S
ervices\Ne
tlogon\Par
ameters]
"DCTcpipPort"=dword:000014
51
[HKEY_LOCAL_MACHINE\SYSTEM
\CurrentCo
ntrolSet\S
ervices\NT
DS\Paramet
ers]
"TCP/IP Port"=dword:00001450
[HKEY_LOCAL_MACHINE\SYSTEM
\CurrentCo
ntrolSet\S
ervices\Nt
Frs\Parame
ters]
"RPC TCP/IP Port Assignment"=dword:00001452
You can see that this limits ntfrs, ntds, and netlogon port usage each to their own static port. We now need to do the same for our new Windows 2008R2 domain controllers we are bringing up. However, I'm not seeing much on Microsoft's support site saying whether these registry settings will work. It looks like the ntfrs setting might work, since that particular KB article has been updated to reflect 2008. I can't find info on the other settings, though.
Does anyone have any info on assigning static ports for rpc-based services on 2008 AD servers?
Answer : Windows 2008R2 static ports for ntds/rpc/ntfrs
The above registry setting will work on 2008 too.
Because registry settings & port no functionality is same.
http://social.technet
.microsoft
.com/wiki/
contents/a
rticles/
ac
tive-direc
tory-repli
cation-ove
r-firewall
s.aspx
http
://www.egg
headcafe.c
om/softwar
e/aspnet/3
5601758/rp
c-
ports.as
px
Random Solutions
best practice to backup VM from MS Hyper-V parent
Can’t download a file from FTP server
PHP code that returns te time of tomorrow's sunrise
problem with an exteranl hard drive
Need to lock down SMTP traffic - Urgent!
Maximum TCP/IP connections?
Windows XP Pro
PHP/XHTML file upload not working with ie or firefox
C# Windows Application - Datagridview autonumber
C # help please