locked
Firewall rules Client in DMZ and SCCM Site servers RRS feed

  • Question


  • We have a Windows 2012 server in DMZ (not part of domain) , In order for me to Update it i need to install SCCM client and manage patching for it (SCCM SUP 2007)

    Does anyone have list of Firewall rules that i need to open between the DMZ server and the SCCM 2007 Site (DP,MP,SLP ) etc

    Sunday, October 4, 2015 2:57 PM

Answers

  • All the ports need are listed within the Docs., there are no rules listed as their would be custom to each CM07 / Firewall.

    Really only port 80 and general 8530 are needed. But this will depend on exactly how you are trying to designed your environment.


    Garth Jones | My blogs: Enhansoft and Old Blog site | Twitter: @GarthMJ

    • Proposed as answer by PRASHANT9 Sunday, October 4, 2015 5:36 PM
    • Marked as answer by Garth JonesMVP Saturday, October 17, 2015 2:14 PM
    Sunday, October 4, 2015 3:55 PM

All replies

  • All the ports need are listed within the Docs., there are no rules listed as their would be custom to each CM07 / Firewall.

    Really only port 80 and general 8530 are needed. But this will depend on exactly how you are trying to designed your environment.


    Garth Jones | My blogs: Enhansoft and Old Blog site | Twitter: @GarthMJ

    • Proposed as answer by PRASHANT9 Sunday, October 4, 2015 5:36 PM
    • Marked as answer by Garth JonesMVP Saturday, October 17, 2015 2:14 PM
    Sunday, October 4, 2015 3:55 PM
  • Also keep in mind that *all* client agent traffic in ConfigMgr is client agent initiated -- the server/site roles *never* initiate communication.

    Jason | http://blog.configmgrftw.com | @jasonsandys

    Sunday, October 4, 2015 7:18 PM