none
Which Firewall ports need to be open to backup a DMZ in a workgroup using SCDMP2012 RRS feed

  • Question

  • I have looked online without any success to the question below.  Any answered would be greatly appreciated.

    I have a server in a DMZ.  It's in a workgroup with a local admin account.  However, I need to find out what ports to open up on the firewall to get it backed up into scdpm 2012.

    What ports to open from DPM to DMZ

    What port(s) to open from DMZ to DPM

    Wednesday, July 17, 2013 1:45 PM

All replies

  • The firewall ports are the same as outlined in DPM 2012 http://technet.microsoft.com/en-us/library/ff399341.aspx

    Because DPM using DCOM the number of ports by default is the 1024-65535 range to allow RPC to use a random high port. If you have a firewall that supports RPC (haven't ever seen this in action) the RPC endpoint mapper will open only the required port with the firewall.

    From what I understand this is what you'll need. This article talks about limiting the RPC ports on a server and we've successfully used this to limit the number of ports to 255 for DPM backup of DMZ servers. http://www.scdpm.se/changing-dcom-ports/

    What ports to open from DPM to DMZ
    DPM Data Channel TCP 5718 TCP 5719
    UDP 137 UDP 138 TCP 139 TCP 445 to DPM server and Domain Controller

    What port(s) to open from DMZ to DPM
    DPM Data Channel TCP 5718 TCP 5719 to DPM server
    UDP 53 to DNS server for name resolution
    UDP 88 TCP 88 to Domain Controller for Auth
    UDP 137 UDP 138 TCP 139 TCP 445 to DPM server and Domain Controller
    TCP 1024-65535 to DPM server (RPC uses a random port

    Thursday, July 18, 2013 1:12 AM