Active Directory Ports
Berikut list port yang di gunakan untuk komunikasi dengan ataupun antar Active Directory.
Port tersebut harus di pastikan sudah di buka di firewall (windows firewall and another firewall).
| |
TCP |
UDP |
ICMP |
| RDP |
Remote Desktop |
3389 |
|
|
| DNS |
DNS Download |
53 |
|
|
| DNS Queries |
|
53 |
|
| WINS Replication |
WINS |
42 |
|
|
| WINS |
|
42 |
|
| ICMP |
echo-request |
|
|
8 |
| info-request |
|
|
15 |
| mast request |
|
|
17 |
| timestamp |
|
|
13 |
| NetBIOS Services |
Name Resolution Service |
137 |
137 |
|
| Datagram Services (Browsing) |
|
138 |
|
| Session Service (net use) |
139 |
|
|
| SMB |
Input |
445 |
|
|
| Output |
|
445 |
|
| Remote Storm |
|
1025 |
|
|
| NTP |
NTP |
123 |
|
|
| NTP |
|
123 |
|
| Content Replication |
Content_Repl |
507 |
|
|
| Kerberos |
Kerberos-Secure |
|
750 |
|
| Kerberos_v5 |
88 + 464 |
|
|
| Kerberos_v5 |
|
88 + 464 |
|
| LDAP |
LDAP |
389 |
|
|
| LDAP |
|
389 |
|
| LDAP over SSL/TLS |
636 |
636 |
|
| Global Catalog |
3268 |
|
|
| Global Catalog over SSL/TSL |
3269 |
|
|
| Replication |
Active Directory |
RPCSS Dynamic |
|
|
Untuk Penambahan Port Tertentu yang ingin di lakukan melalui command prompt, dapat di lakukan
dengan mengetikan syntax netsh firewall, contohnya dengan command sebagai berikut :
netsh firewall add portopening tcp 3389 139_tcp_AD_PORTS enable
netsh firewall add portopening tcp 139 139_tcp_AD_PORTS enable subnet
netsh firewall add portopening tcp 445 445_tcp_AD_PORTS enable subnet
netsh firewall add portopening udp 137 137_udp_AD_PORTS enable subnet
netsh firewall add portopening udp 138 138_udp_AD_PORTS enable subnet
netsh firewall add portopening tcp 53 53_tcp_AD_PORTS enable subnet
netsh firewall add portopening udp 53 53_udp_AD_PORTS enable subnet
netsh firewall add portopening tcp 42 42_tcp_AD_PORTS enable subnet
netsh firewall add portopening udp 42 42_udp_AD_PORTS enable subnet
netsh firewall add portopening tcp 137 137_tcp_AD_PORTS enable subnet
netsh firewall add portopening tcp 1025 1025_tcp_AD_PORTS enable subnet
netsh firewall add portopening tcp 123 123_tcp_AD_PORTS enable subnet
netsh firewall add portopening udp 123 123_udp_AD_PORTS enable subnet
netsh firewall add portopening tcp 507 507_tcp_AD_PORTS enable subnet
netsh firewall add portopening udp 750 750_udp_AD_PORTS enable subnet
netsh firewall add portopening tcp 88 88_tcp_AD_PORTS enable subnet
netsh firewall add portopening udp 88 88_udp_AD_PORTS enable subnet
netsh firewall add portopening tcp 464 464_tcp_AD_PORTS enable subnet
netsh firewall add portopening udp 464 464_udp_AD_PORTS enable subnet
netsh firewall add portopening udp 389 389_udp_AD_PORTS enable subnet
netsh firewall add portopening udp 636 636_udp_AD_PORTS enable subnet
netsh firewall add portopening udp 445 445_udp_AD_PORTS enable subnet
netsh firewall add portopening udp 161 161_udp_AD_PORTS enable subnet
netsh firewall add portopening tcp 162 162_tcp_AD_PORTS enable subnet
netsh firewall add portopening tcp 42424 42424_tcp_AD_PORTS enable subnet
netsh firewall add portopening tcp 5000 5000_tcp_AD_PORTS enable subnet
netsh firewall add portopening tcp 5001 5001_tcp_AD_PORTS enable subnet
Good luck.