AD ports for 2012 r2 failover cluster

  • Last Post 16 May 2016
DhirajHaritwal posted this 16 May 2016

Hi,   What are AD ports require to run failover cluster.   As per firewall logs, getting hit on below ports on AD server. Would like to hear what other ports are require.   53/TCP 53/UDP 88/TCP (Kerberos_V5) 123/UDP (NTP) 445/TCP (Netbios)   Note : FOC already configured & running fine & now need to restrict communication.


This email is confidential and intended only for the use of the individual or entity named above and may contain information that is privileged. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of this email is strictly prohibited. If you have received this email in error, please notify us immediately by return email or telephone and destroy the original message. - This mail is sent via Sony Asia Pacific Mail Gateway..

slavickp posted this 16 May 2016

If you have Windows firewall on your DC, withndefailt settings and no additional roles on the system, then Windows firewall already restricts communication.
In addition to DNS, Kerberos, NTP and SMB, you’ll need RPC (135/TCP plus dynamic/configurable range), LDAP, LDAP/GC. Also - ICMP ping and 389/UDP for LDAP ping.
Oldie but goodie: