Hello,
I'd like your help regarding the network ports that have to be open between a Windows Server 2012 R2 Failover Cluster and the Active Directory Domain Controllers with Windows 2008 R2 Forest and Domain Functional Level.
I believe that the ports required for the individual servers are:
TCP/UDP 389 - LDAP
TCP 636 - LDAPS
TCP/UDP 88 - Kerberos
TCP/UDP 464 Kerberos Password Change
TCP 3268 - Global Catalog
TCP 3269 - Global Catalog
TCP/UDP 53 - DNS
TCP/UDP 445 - SMB, CIFS, etc
TCP/UDP 135 - RPC
UDP 123 - NTP
UDP 137 - NetLogon, NetBIOS
Do the above ports have to open for the Cluster IP as well?
Moreover, should the ephemeral ports be open too?
Thanks in advance,
Christos