Zentyal Forum, Linux Small Business Server
Zentyal Server => Directory and Authentication => Topic started by: JLLEWELYN on March 18, 2019, 08:49:17 pm
-
Greetings to Zentyal team.
I find the following doubt.
I have Zentyal Server 6.0 with the modules: domain controller, dns, network, dhcp, firewall, IPS, authority certificate, ftp, ntp and registry.
But the domain controller is not a gateway, I use another UTM solution as a firewall for my network.
my domain controller is "* .com" and I wanted to know what port should be exposed to the Internet?
tcp 0 0 192.168.1.2:135 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.1.1:135 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.0.1:135 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.0.1:139 0.0.0.0:* LISTEN 3273/smbd
tcp 0 0 127.0.1.1:139 0.0.0.0:* LISTEN 3273/smbd
tcp 0 0 192.168.1.2:139 0.0.0.0:* LISTEN 3273/smbd
tcp 0 0 192.168.1.2:464 0.0.0.0:* LISTEN 3276/samba
tcp 0 0 127.0.1.1:464 0.0.0.0:* LISTEN 3276/samba
tcp 0 0 127.0.0.1:464 0.0.0.0:* LISTEN 3276/samba
tcp 0 0 172.16.251.1:53 0.0.0.0:* LISTEN 2569/named
tcp 0 0 172.16.14.1:53 0.0.0.0:* LISTEN 2569/named
tcp 0 0 192.168.1.2:53 0.0.0.0:* LISTEN 2569/named
tcp 0 0 201.210.227.42:53 0.0.0.0:* LISTEN 2569/named
tcp 0 0 127.0.1.1:53 0.0.0.0:* LISTEN 2569/named
tcp 0 0 127.0.0.1:53 0.0.0.0:* LISTEN 2569/named
tcp 0 0 192.168.1.2:88 0.0.0.0:* LISTEN 3276/samba
tcp 0 0 127.0.1.1:88 0.0.0.0:* LISTEN 3276/samba
tcp 0 0 127.0.0.1:88 0.0.0.0:* LISTEN 3276/samba
tcp 0 0 127.0.0.1:953 0.0.0.0:* LISTEN 2569/named
tcp 0 0 192.168.1.2:636 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.1.1:636 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.0.1:636 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.0.1:445 0.0.0.0:* LISTEN 3273/smbd
tcp 0 0 127.0.1.1:445 0.0.0.0:* LISTEN 3273/smbd
tcp 0 0 192.168.1.2:445 0.0.0.0:* LISTEN 3273/smbd
tcp 0 0 192.168.1.2:49152 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.1.1:49152 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.0.1:49152 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 192.168.1.2:49153 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.1.1:49153 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.0.1:49153 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 192.168.1.2:49154 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.1.1:49154 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 127.0.0.1:49154 0.0.0.0:* LISTEN 3269/samba
tcp 0 0 192.168.1.2:3268 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.1.1:3268 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.0.1:3268 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 192.168.1.2:3269 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 192.168.1.2:389 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.1.1:3269 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.1.1:389 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.0.1:3269 0.0.0.0:* LISTEN 3274/samba
tcp 0 0 127.0.0.1:389 0.0.0.0:* LISTEN 3274/samba
-
Have you considered 2 network cards, and having your router/firewall only opening the strictly necessary ports from the internet to the second card?