Welcome to Port3101.org : Your BES Connection Mark forums read | View Forum Leaders
Port3101.org : Your BES Connection



Reply
LinkBack (1) Thread Tools Display Modes
BES 501 HA - Hardening Windows 2008 Servers
 
  1 links from elsewhere to this Post. Click to view. #1 (permalink)  
Old 08-06-2010, 10:07 AM
BES Activated
 
Join Date: Aug 2010
Posts: 2
Default BES 501 HA - Hardening Windows 2008 Servers

Hi

I have BES 5.0.1 HA for Domino running perfectly, but now our security staff have decided that the servers need to be hardened.

Rather than just locking down all ports and seeing what happens, I need to know what ports the HA services use to communicate with each other.

Other than ports 1433 (SQL), 3101 (RIM SRP), 1352 (NotesRPC), 80 (HTTP), 443 (HTTPS), and 43148 (DIIOP), what other ports are required?

Thanks

- Stef
Reply With Quote
Sponsored Links
  #2 (permalink)  
Old 08-06-2010, 07:58 PM
BES Activated
 
Join Date: Aug 2010
Location: Ojai, CA
Posts: 2
Default BES Synching issues (Tasks/Addr Book) related to ports?

Are you saying that the BES (in my case, BPS) Server running on Domino 7.0.4 requires these ports to open?

I'm trying to figure out why email/calendar sync OTA and Tasks/Address Book doesn't.

I realized that I had changed the Windows Administrator Password, and needed to updated the various BES Services -- no difference.

Now I'm thinking that because of our recent PCI Compliance Project last week that I lopped off too many ports.

Does the Domino Server, running BPS, require the following Ports to be open. Note: My understanding is that Port 3101 is outbound only.

<<Other than ports 1433 (SQL), 3101 (RIM SRP), 1352 (NotesRPC), 80 (HTTP), 443 (HTTPS), and 43148 (DIIOP), what other ports are required?
Reply With Quote
  #3 (permalink)  
Old 08-09-2010, 09:41 AM
BES Activated
 
Join Date: Aug 2010
Posts: 2
Default

Hi Paul

Port 3101 is required for the RIM Infrastructure, however for access to the mail server(s) you need to have port 1352 (Notes RPC) open as well. Also depending on the location of the SQL database, you may need 1433 - but f it's local this should not be required.

My situation is different, as I have 2 x BES 5 in HA and a seperate SQL server (clustered). When I lock down the servers the BES HA status is "Not available" - and this initiates a failover to the other server ...

- Stef
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


LinkBacks (?)
LinkBack to this Thread: http://www.port3101.org/port-3101-bes-admin-bar-grill/2424-bes-501-ha-hardening-windows-2008-servers.html
Posted By For Type Date
Pick Up Your Email by mail2web This thread Refback 08-09-2010 06:29 AM

Similar Threads
Thread Thread Starter Forum Replies Last Post
Windows 2008 Service Dependencies DGW Port 3101: The BES Admin Bar & Grill 1 02-09-2011 06:34 AM
SQL 2008 PS2 64-Bit and Windows 2008 R2 RadHaz75 Port 3101: The BES Admin Bar & Grill 0 10-08-2009 12:51 PM
KB19159 - Unable to install MR1 for BES 5.0 on a Windows 2008 Server hdawg Featured BlackBerry KB Articles 0 09-16-2009 09:48 PM
KB17325 - BES may encounter issues in a Windows Server 2008 based AD environment hdawg Featured BlackBerry KB Articles 0 05-26-2009 11:52 AM
KB16124 - Unable to install remote BlackBerry Manager on Windows XP or Windows Vista hdawg Featured BlackBerry KB Articles 0 04-14-2009 08:02 PM


All times are GMT -4. The time now is 09:22 PM.
Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2018, vBulletin Solutions, Inc.


 

SEO by vBSEO 3.3.2 PL2