none
tools to check RPC

    Question

  • Hi,

    For to function correctly many posrts must be open. Is there any tools I could use to check RPC ir working as expected (apart network monitor).

    thanks

    Sunday, June 17, 2012 6:42 PM

Answers

  • There is a portqry tool which you can use to analyse the ports on firewall. You can use the tool to check the necessary ports are open or not.

    You can download the tool from below link

    http://www.microsoft.com/download/en/details.aspx?id=17148

    Using PortQry for Troubleshooting.

    http://blogs.technet.com/b/askds/archive/2009/01/22/using-portqry-for-troubleshooting.aspx

    Regards,

    _Prashant_


    MCSA|MCITP SA|Microsoft Exchange 2003 Blog - http://prashant1987.wordpress.com Disclaimer: This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Monday, June 18, 2012 6:07 AM
  • Hi,

    You can use Port Query as suggested by Prashant..

    Below are the needed ports to be opened/allowed for effective communication..

    Protocol and Port AD and AD DS Usage Type of traffic
    TCP and UDP 389 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP
    TCP 636 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP SSL
    TCP 3268 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP GC
    TCP 3269 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP GC SSL
    TCP and UDP 88 User and Computer Authentication, Forest Level Trusts Kerberos
    TCP and UDP 53 User and Computer Authentication, Name Resolution, Trusts DNS
    TCP and UDP 445 Replication, User and Computer Authentication, Group Policy, Trusts SMB,CIFS,SMB2, DFSN, LSARPC, NbtSS, NetLogonR, SamR, SrvSvc
    TCP 25 Replication SMTP
    TCP 135 Replication RPC, EPM
    TCP Dynamic Replication, User and Computer Authentication, Group Policy, Trusts RPC, DCOM, EPM, DRSUAPI, NetLogonR, SamR, FRS
    TCP 5722 File Replication RPC, DFSR (SYSVOL)
    UDP 123 Windows Time, Trusts Windows Time
    TCP and UDP 464 Replication, User and Computer Authentication, Trusts Kerberos change/set password
    UDP Dynamic Group Policy DCOM, RPC, EPM
    UDP 138 DFS, Group Policy DFSN, NetLogon, NetBIOS Datagram Service
    TCP 9389 AD DS Web Services SOAP
    UDP 67 and UDP 2535 DHCP DHCP, MADCAP
    Note
    DHCP is not a core AD DS service but it is often present in many AD DS deployments.
    UDP 137 User and Computer Authentication, NetLogon, NetBIOS Name Resolution
    TCP 139 User and Computer Authentication, Replication DFSN, NetBIOS Session Service, NetLogon

    Regards, Mohan R Sr. Administrator - Server Support

    Monday, June 18, 2012 7:07 AM
  • You can refer below article for the port required for AD. The tool can be Portquery referred by Prashant, Netmon or wireshark can be used too.

    Active Directory and Active Directory Domain Services Port Requirements

    http://technet.microsoft.com/en-us/library/dd772723%28v=ws.10%29.aspx


    Awinish Vishwakarma - MVP - Directory Services

    My Blog: awinish.wordpress.com

    Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Monday, June 18, 2012 7:32 AM
    Moderator

All replies

  • There is a portqry tool which you can use to analyse the ports on firewall. You can use the tool to check the necessary ports are open or not.

    You can download the tool from below link

    http://www.microsoft.com/download/en/details.aspx?id=17148

    Using PortQry for Troubleshooting.

    http://blogs.technet.com/b/askds/archive/2009/01/22/using-portqry-for-troubleshooting.aspx

    Regards,

    _Prashant_


    MCSA|MCITP SA|Microsoft Exchange 2003 Blog - http://prashant1987.wordpress.com Disclaimer: This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Monday, June 18, 2012 6:07 AM
  • Hi,

    You can use Port Query as suggested by Prashant..

    Below are the needed ports to be opened/allowed for effective communication..

    Protocol and Port AD and AD DS Usage Type of traffic
    TCP and UDP 389 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP
    TCP 636 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP SSL
    TCP 3268 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP GC
    TCP 3269 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP GC SSL
    TCP and UDP 88 User and Computer Authentication, Forest Level Trusts Kerberos
    TCP and UDP 53 User and Computer Authentication, Name Resolution, Trusts DNS
    TCP and UDP 445 Replication, User and Computer Authentication, Group Policy, Trusts SMB,CIFS,SMB2, DFSN, LSARPC, NbtSS, NetLogonR, SamR, SrvSvc
    TCP 25 Replication SMTP
    TCP 135 Replication RPC, EPM
    TCP Dynamic Replication, User and Computer Authentication, Group Policy, Trusts RPC, DCOM, EPM, DRSUAPI, NetLogonR, SamR, FRS
    TCP 5722 File Replication RPC, DFSR (SYSVOL)
    UDP 123 Windows Time, Trusts Windows Time
    TCP and UDP 464 Replication, User and Computer Authentication, Trusts Kerberos change/set password
    UDP Dynamic Group Policy DCOM, RPC, EPM
    UDP 138 DFS, Group Policy DFSN, NetLogon, NetBIOS Datagram Service
    TCP 9389 AD DS Web Services SOAP
    UDP 67 and UDP 2535 DHCP DHCP, MADCAP
    Note
    DHCP is not a core AD DS service but it is often present in many AD DS deployments.
    UDP 137 User and Computer Authentication, NetLogon, NetBIOS Name Resolution
    TCP 139 User and Computer Authentication, Replication DFSN, NetBIOS Session Service, NetLogon

    Regards, Mohan R Sr. Administrator - Server Support

    Monday, June 18, 2012 7:07 AM
  • You can refer below article for the port required for AD. The tool can be Portquery referred by Prashant, Netmon or wireshark can be used too.

    Active Directory and Active Directory Domain Services Port Requirements

    http://technet.microsoft.com/en-us/library/dd772723%28v=ws.10%29.aspx


    Awinish Vishwakarma - MVP - Directory Services

    My Blog: awinish.wordpress.com

    Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.

    Monday, June 18, 2012 7:32 AM
    Moderator