[Freeipa-users] Blocking 389 and 636 for AD trusts
Brian Lee
brian_lee1 at jabil.com
Mon Aug 12 15:24:03 UTC 2013
Hello everyone,
I understand this is well documented that we need to block AD from
establishing communication to the LDAP ports, but I've never heard an
explanation on why this is needed.
Additionally, In our environment, we have a 100+ AD servers. Do I need to
add an iptables rule for each AD server, on each IPA server or only the
ones configured for DNS forwarding?
Thanks as always
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20130812/a1936787/attachment.htm>
More information about the Freeipa-users
mailing list