Discussion:
What ports to open in our firewall
(too old to reply)
Morten Holst
2005-05-03 07:39:02 UTC
Permalink
Hello

I need som help regarding what ports to open in our firewall.
We have a two mom management servers separated by a firewall.
One managemnt server in a internal sone and another in a secure sone.
The Mom agents in the internal sone uses the management server in the sone
and the agents in the secure sone uses the management server there.
All the computers are in the same domain and trusted.
I whant the two management server to communicate with each other and when i
make a change to a rule in one management server i whant the other server to
pick up the changes.
I also whant the mom agents to communicate with both the mom management
servers for redundancy.
--
Morten Holst
Kelly Morris [MSFT]
2005-05-06 18:34:32 UTC
Permalink
Good Morning,
Server-Agent communication takes place over port 1270 TCP, with heart
beats going over UDP. The MOM Security Guide will have more information,
http://www.microsoft.com/mom/techinfo/productdoc/default.mspx. Also, check
out chapter 7 of the deployment guide. It details deploying MOM in advanced
environments. I hope this helps.
--
Kelly Morris [MSFT]

This post is provided "AS IS" with no warranties, and confers no rights.
Post by Morten Holst
Hello
I need som help regarding what ports to open in our firewall.
We have a two mom management servers separated by a firewall.
One managemnt server in a internal sone and another in a secure sone.
The Mom agents in the internal sone uses the management server in the sone
and the agents in the secure sone uses the management server there.
All the computers are in the same domain and trusted.
I whant the two management server to communicate with each other and when i
make a change to a rule in one management server i whant the other server to
pick up the changes.
I also whant the mom agents to communicate with both the mom management
servers for redundancy.
--
Morten Holst
Arie de Haan
2005-05-18 22:23:04 UTC
Permalink
Post by Morten Holst
Hello
I need som help regarding what ports to open in our firewall.
We have a two mom management servers separated by a firewall.
One managemnt server in a internal sone and another in a secure sone.
The Mom agents in the internal sone uses the management server in the sone
and the agents in the secure sone uses the management server there.
All the computers are in the same domain and trusted.
I whant the two management server to communicate with each other and when i
make a change to a rule in one management server i whant the other server to
pick up the changes.
I also whant the mom agents to communicate with both the mom management
servers for redundancy.
You're configuration is security wise not the best choice in my opinion.
To have domain members in the DMZ is not a really good idea you need to
open a lot of ports. and this results in a back-end firewall which will
not do a lot. So consider a redesign
--
Greetz,

Arie
This posting is provide "AS IS" with no guarantees, warranties, rigths
etc.
Loading...