I'll try and simplify my scenario to 2 networks. I have client machines in network A and domain controllers in network B. I'm trying to narrow down the open ports from the client network to the DC network. The DCs are 2008R2. After searching many posts, I've come up with the following list.
Source: Network A
Destination: Network B
TCP 135TCP 137
TCP 139
TCP/UDP 389
TCP 636
TCP 3268
TCP 3269
TCP/UDP 88
TCP/UDP 53
TCP/UDP 445
TCP/UDP 464
UDP 123
UDP 137
UDP 138
TCP/UDP 49152-65535
My first question is if there are any ports that I may have missed and second, would there be any communication initiated by the DCs to the client network requiring another set of fw rules from Network B to Network A?
Thanks in advance for any help.
