Published : September 27, 2005
Depending on your network configuration, you may need to perform firewall configuration to enable communication between DPM, the file servers, and the domain controllers. To help with firewall configuration, Table 4.3 provides details about the protocols and ports used by DPM.
Table 4.3 Protocols and Ports Used by DPM
The DPM control protocol uses DCOM. DPM issues commands to the file agent by invoking DCOM calls on the agent. The file agent responds by invoking DCOM calls on the DPM server.
TCP port 135 is the DCE endpoint resolution point used by DCOM.
By default, DCOM assigns ports dynamically from the TCP port range of 1024 through 65535. You can, however, configure this range by using Component Services. For more information, see Using Distributed COM with Firewalls (http://go.microsoft.com/fwlink/?LinkId=46088).
The DPM data channel is based on TCP. Both DPM and the file server initiate connections to enable DPM operations such as synchronization and recovery.
DPM communicates with the DPM Agent Coordinator on port 3148 and with the file agent on port 3149.
Used between DPM and the domain controller, and between the file server and the domain controller, for host name resolution.
Used between DPM and the domain controller, and between the file server and the domain controller, for authentication of the connection endpoint.
Used between DPM and the domain controller for Active Directory queries.
Used between DPM and the file server, between DPM and the domain controller, and between the file server and the domain controller, for miscellaneous operations.
Dynamic Port Range is used by the client computers (or a server acting as a client) to connect to Well Known Port Services or Root Services. A DNS Server is acting as a Server and listening on a specific Well Known Port (Port TCP and UDP 53). The Dynamic Port Range used by the client computers depend on the version of Operating Systems.
Port Range: 1024-65535
This port range is used by the computers running Windows XP, Windows 2000 Professional, and Windows Server 2003. A client computer running this version will always pick a port from the above mentioned Dynamic Port Range.
Port Range: 49152-65535
The Dynamic Port Range has been changed in the Windows Vista, Windows 7 and Windows Server 2008. By default, a fresh Windows Server 2008 installation will have this Dynamic Port Range configured. To see the port range, you can use the following commands:
- NetSh INT IPV4 Show DynamicPort TCP
- NetSh INT IPV4 Show DynamicPort UDP
To set or change the Dynamic Port Range:
- NetSh INT IPV4 SET DynamicPort TCP Start=1024 num=65535
- NetSh INT IPV4 SET DynamicPort UDP Start=1024 num=65535