This article explains a registry entry which can be used to strict the AD Replication traffic to a specific port.کد:http://www.windowsnetworking.com/kbase/WindowsTips/WindowsServer2008/AdminTips/ActiveDirectory/AQuickTipToStictADReplicationToASpecificPort.html
Active Directory Replication works on many ports. Domain Controllers replicate with its partners using TCP 389, RPC 135, DNS 53 etc. There are more than 10 ports need to be opened in the firewall. Sometimes, it is not possible to open all the port range in the production environment. You can allow Active Directory Replication to work on one port only by modiyfing the following registry on each domain controller: Registry Entry 1
- KEY NAME: HEKY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\NTDS\Parameters
- Entry Name: TCP/IP Port
- Value: Port No...
Registry Entry 2
- KEY NAME: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Netlogon\Parameters
- Entry Name: DCTcpipPort
- Value: Port No...
موضوعات مشابه:
- ایجاد و پیکربندی port forwarding و یا port redirecting در آیزا 2006
- How to use MRTG to log specific protocol traffic using SNMP and Cisco’s NBAR
- How to exclude specific computers from URL Filtering
- Denying access to a specific webpage(s) using Site and Content rules
- How to Disable Caching of Specific Website