Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Joining a Microsoft domain through a Pix 515

I have a Pix 515 with 3 interfaces. Interface 2 has a workstation that will need ot join a domain with the server living on the inside interface. I have port 389 allowed but it doesn't let the client join the domain. Does anyone have a suggestion as to what ports are required besides 389?

Thanks,

Jerry

1 REPLY
Silver

Re: Joining a Microsoft domain through a Pix 515

You would need to open a ton of ports. MS networking does not play nice with DMZs at all. I would recommend moving that machine off of the dmz. If you want it to be on the domain, you need to open udp/tcp 135-139, 445, and others. and you need to disable nat between the interfaces.

103
Views
0
Helpful
1
Replies
CreatePlease login to create content