Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
220
Views
0
Helpful
1
Replies

Joining a Microsoft domain through a Pix 515

jercollins
Level 1
Level 1

‎02-02-2004 10:43 AM - edited ‎02-20-2020 11:13 PM

I have a Pix 515 with 3 interfaces. Interface 2 has a workstation that will need ot join a domain with the server living on the inside interface. I have port 389 allowed but it doesn't let the client join the domain. Does anyone have a suggestion as to what ports are required besides 389?

Thanks,

Jerry

0 Helpful
1 Reply 1

mostiguy
Level 6
Level 6

‎02-02-2004 11:12 AM

You would need to open a ton of ports. MS networking does not play nice with DMZs at all. I would recommend moving that machine off of the dmz. If you want it to be on the domain, you need to open udp/tcp 135-139, 445, and others. and you need to disable nat between the interfaces.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card