Firewall Port for DHCP 2012 R2 Failover (Load Sharing mode)

Similar Messages

• Windows Server 2012R2 DHCP Load Sharing Mode

  Hello,
  I am planning to migrate a standalone DHCP Server on Windows 2003 to Windows Server 2012R2. With this migration, I like to use the 2012R2 Load Sharing Mode feature for DHCP. This implementation cover TWO sites.
  My initial plan was to have two Windows 2012R2 DHCP Servers (virtual) at each site thus servers at each offers site redundancy  as well. So two at Site 1 and two at Site 2 on load sharing mode. If ServerA at Site 1 goes down for some reason Server B
  at Site1 will service the DHCP clients in load sharing mode without going to Site 2. I came across a MS document that says:
  Number of Servers: DHCP failover is not supported for more than two DHCP Servers. The failover relationship is always comprised of two DHCP servers.
  Does this mean I can have only TWO DHCP Servers in a load sharing mode. One at Site 1 and the second one at Site 2??
  Thanks in advance
  TIA TP

  Hi,
  The DHCP failover relationship is comprised of DHCP server and its partner.  In a relationship there are just 2 DHCP servers.
  But this doesn’t mean you can just use 2 DHCP servers in your sites.  The DHCP failover setting is based on DHCP scope, for one DHCP scope there could be just one DHCP failover relationship including 2 DHCP servers. If you have more than 1 DHCP scope,
  for example, set DHCP failover relationship between DHCP server 1 and DHCP server 2 for scope A. then set DHCP failover relationship between DHCP server 1 and DHCP server 3 for scope B.
  The document Step-by-Step: Configure DHCP for Failover(http://technet.microsoft.com/en-us/library/hh831385.aspx) is a introduction about this function and for your reference.
  Depends on the DHCP scope’s configuration and the requirements of your network. You may enhance or customize the architecture of implementation.
  Best Regards,           
  Eve Wang  

• Sun Ray Server Failover/ Load Sharing

  Hi All
  I have 2 sun servers which i want to use as sun ray servers in failover/load sharing mode.
  I have 60 sun ray thin clients who will access these 2 Sun ray servers.
  The users will be using the word, excel and presentation application and save there data in their home directories.
  What i want to do is to load share these users between the servers so that any user can connect on anyserver and should be able to see his old data.
  Is it a possible configuration?
  if yes then please give me idea about how to do it.
  I've the system admin document for sun ray server where it says about replication but doesn't tell what data will be replicated between the primary and secondary server.
  Can we replicate the the user home accounts and directories as well?
  Please assist me.
  Thanks in advance..
  BR
  RAK

  I did the all of the following already and it has never work. below is the config for both servers
  On the primary
  thumper / 502 # utadm -l
  LAN connections: Off
  Subnetwork: 10.0.1.0
  Interface= ce1 (10.0.1.1)
  Netmask= 255.255.255.0
  Broadcast= 10.0.1.255
  Router= 10.0.1.1
  AuthSrvr= 10.0.1.1
  AltAuth= 10.0.1.1 255.255.255.255
  FirmwareSrvr= 10.0.1.1
  NewTver= 4.0_48_2007.08.01.15.48
  IP assignment= 2/20 (10.0.1.16)
  thumper / 501 # utreplica -l
  Sun Ray Core Services 4.0
  Administration Failover Configuration
  thumper.uen.org is a primary server for:
  molt.uen.org
  On the secondary
  molt / 315 # utadm -l
  LAN connections: Off
  Subnetwork: 10.0.1.0
  Interface= ce1 (10.0.1.2)
  Netmask= 255.255.255.0
  Broadcast= 10.0.1.255
  Router= 10.0.1.2
  AuthSrvr= 10.0.1.2
  AltAuth= 10.0.1.2 255.255.255.255
  FirmwareSrvr= 10.0.1.2
  NewTver= 4.0_48_2007.08.01.15.48
  IP assignment= 7/20 (10.0.1.46)
  molt / 314 # utreplica -l
  Sun Ray Core Services 4.0
  Administration Failover Configuration
  molt.uen.org is a secondary server
  The primary server is: thumper.uen.org

• Firewall ports for B2B ( Telepresence with CUBE)

  Could any body let me know what firewall port need to be open for B2B set up telepresence with CUBE on SIP trunk.
  Please suggest
  Regards
  Gautrav

  Hi Harold,
  Please check the link for all SAP port related information
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/4e515a43-0e01-0010-2da1-9bcc452c280b?QuickLink=index&…
  Thanks and regards,
  Nikhil

• Firewall ports for Zone Sharing and Subscription?

  Hi again!
  What firewall ports need to be open for Zone Sharing and Subscription?...

  Hello,
  we updated from 11.3.1 to 11.3.2
  Now i can not run the command chkconfig -a novell-proxydhcp to set the proxydhcp to autorun because i get...

• Security/Firewall recommendations for DirectAccess 2012 (Dual-NIC Edge Configuration)

  Hello all,
  We have installed and configured DirectAccess 2012 with the Edge Configuration with the thought that we would be able to install TMG directly on this server (as we did with the original 2008 DirectAccess/UAG). It appears that we cannot install TMG on Server
  2012 R2, so now we have a server directly connected to the outside world with public IP's assigned to it and no firewall other than Windows Firewall. I know that most organizations choose to configure DirectAccess behind an Edge device (hindsight being perfect,
  we should have as well) however we did not and it appears that we can't easily change this without completely reconfiguring DirectAccess (which took several days to get it right).
  So my question: What are the security/firewall recommendations for a DirectAccess server in an Edge scenario? I've Googled this and have not found much. Thanks in advance,
  Brad
  -Brad

  Its always good to have a Firewall infront of a domain joined machine and of course DA Server is not an exception.
  Server 2012 can work behind a Firewall with NAT functionality enabled or disabled.
  if you have a fully functional DA with EDGE profile enabled, still you can configue any firewall(without NATing functionality) without changing the configuration settings in DA.
  Also you can have TMG protecting your existing DA setup. Below is the link for it.
  http://www.isaserver.org/articles-tutorials/general/implementing-windows-server-2012-directaccess-behind-forefront-tmg-part1.html
  Please let me know, how it goes.

• Firewall Ports for Web Services

  Hi Experts,
  Can you please list what are the firewall ports to be opened to call a ECC 6.0 system web service from a .Net application, assuming both systems are separated by a firewall
  Thanks in advance
  Regards,
  Krishna

  Hello ,
  Please as far as i know you have to open 4 ports in the ecc system.
  They are
  Message server port =  36<instance number>
  ITS = 80<Instance number>
  Gateway = 33<instance number> -- make sure service entries are maintained (sapgw)
  If you maintain Central SLD - then the specific port needs to be opened. - 5(instance number)00.
  I hope these ports needs to be opened and this is enough,  I believe.
  Vijay.

• Firewall ports for shared computers (bonjour) to appear in Finder?

  This is the setup:
  my Lion server is in a different subnet (DMZ) then the workstations (LAN) through the means of a third-party firewall
  the Lion server has File Sharing enabled
  the workstations can access the share points by connecting to the server (connections from LAN to DMZ are permitted)
  The problem:
  the Lion server wont's show up in the workstation's finder (shared computers AKA bonjour)
  The question:
  what ports need to be opened from DMZ to LAN in order for the Lion server to announce itself to the clients?

  A work around that may work for you (does for me) is simply to keep the errant PC from sleeping during the period that you may want to connect to it. That's right. Torture is by depriving it of sleep. It's a PC; it deserves it, right?

• Firewall ports for Nexus 1000v

  hi all,
  There is firewall between nexus 1000v and vcentre and ESX 4.1i hosts.
  Could u pls advise which TCP/UDP ports to be opened for communication among Nexus1000v, vcentre and ESX hosts?
  Thank you very much!
  Best Regards,

  David,
  Between your VSM & VC you'll need TCP ports 80 & 443 open
  http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3/troubleshooting/configuration/guide/n1000v_trouble_5modules.html
  Between your VEM & VSM you'll need port this should be layer 2 so no ports need to be open.
  If you're using Layer 3 mode then enusre you have UDP 4785 open.
  http://www.ciscosystemsverified.biz/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_3/system_management/configuration/guide/n1000v_system_3domain.pdf
  Regards,
  Robert

• Firewall Ports for ERP

  Hi Friends,
  I just installed ERP6 with EHP7 on SuSE Linux Enterprise Server 11 SP2(SLES), but I found that I could not connect the ERP from SAPGUI unless I disable the firewall of SLES. I have opened tcp ports 3200 3300 3600 3601 on the firewall, could you please tell me if any ports needed ?
  Thanks & Regards
  Harold

  Hi Harold,
  Please check the link for all SAP port related information
  http://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/4e515a43-0e01-0010-2da1-9bcc452c280b?QuickLink=index&…
  Thanks and regards,
  Nikhil

• Firewall ports for appv client

  native Appv infrastructure. Apps are published using UNC.
  what ports should be open for the clients sitting behind the firewall?
  --- When you hit a wrong note its the next note that makes it good or bad. --- Miles Davis

  No, the client does not communicate with the App-V Management Server.
  Please remember to click "Mark as Answer" or "Vote as Helpful" on the post that answers your question (or click "Unmark as Answer" if a marked post does not actually
  answer your question). This can be beneficial to other community members reading the thread.
  This forum post is my own opinion and does not necessarily reflect the opinion or view of my employer, Microsoft, its employees, or other MVPs.
  Twitter:
  @stealthpuppy | Blog:
  stealthpuppy.com |
  The Definitive Guide to Delivering Microsoft Office with App-V

• ZAC Firewall ports for getting runtimes?

  Hi guys,
  I am trying to create some simple ZAC applications for exemple IE8. I'm adding the Adobe 9.0 and .NET3.5 Runtimes to the app and I'm getting a 401 error. I know that there's a lot of firewall restriction where I am and I wanted to know if there's some ports that needs to be opened for this to work?
  My next step is to test the same thing on a different network to see if this is an installation problem. I am using 8.0.3 right now on XP.
  Thanks!

  sebastien,
  It appears that in the past few days you have not received a response to your
  posting. That concerns us, and has triggered this automated reply.
  Has your problem been resolved? If not, you might try one of the following options:
  - Visit http://support.novell.com and search the knowledgebase and/or check all
  the other self support options and support programs available.
  - You could also try posting your message again. Make sure it is posted in the
  correct newsgroup. (http://forums.novell.com)
  Be sure to read the forum FAQ about what to expect in the way of responses:
  http://forums.novell.com/faq.php
  If this is a reply to a duplicate posting, please ignore and accept our apologies
  and rest assured we will issue a stern reprimand to our posting bot.
  Good luck!
  Your Novell Product Support Forums Team
  http://forums.novell.com/

• Firewall ports for WCS to talk to controllers

  I have a WCS on one side of a firewall, and a controller on the other side. What ports and protocols would I need to open in the firewall to allow the WCS to manage the controller? All I can find is info on what ports to open for a client to access the WCS. Thanks for any help!!

  When there is a conflicting port in use, WCS fails to get started with just the error message "Failed to start WCS Server." The WCS requires these ports to be available in the machine:
     *Checking for Port 1299 availability... OK
         *Checking for Port 80 availability... OK
         *Checking for Port 443 availability... OK
         *Checking for Port 8009 availability... OK
         *Checking for Port 8456 availability... OK
         *Checking for Port 8457 availability... OK
         *Checking for Port 8005 availability... OK
         *Checking for UDP Port 69 availability... OK
         *Checking for Port 21 availability... OK
  Make sure that you do not run other applications on those ports, such as web server (80), TFTP Server (69), or FTP server (21). On a WCS installed on linux, go to WCS/webnms/logs/wcs-0-0.log and look for the conflicting ports. On Windows based WCS, you can run netstat -a from a DOS window to see the listening ports that are used. If this is the case, shut them down and try to restart WCS.

• What are the host network requirements for a 2012 R2 failover cluster using fiber channel?

  I've seen comments on here regarding how the heartbeat signal isn't really required anymore - is that true?  We started using Hyper-V in its infancy and have upgraded gleefully every step of the way.  With 2012 R2, we also upgraded from 1gb iSCSI
  to 8GB Fiber Channel.  Currently, I have three NICs in use on each host.  One for "No cluster communication" on it's own VLAN.  Another for "Allow cluster network communication on this network" but NOT allowing clients, on
  a different VLAN.  And lastly the public network which allows cluster comms and clients on it (public VLAN).
  Is it still necessary to have all three of these NICs in use?  If the heartbeat isn't necessary any more, is there any reason to not have two public IPs and do away with the rest of the network?  (two for fault tolerance)  Does Live Migration
  still use Ethernet if FC is available?  I wasn't sure what all has changed with these requirements since Hyper-V first came out.
  If it matters, we have 5 servers w/160GB RAM, 8 NICs, dual HBAs connected to redundant FC switches, going to two SANs.  We're running around 30 VMs right now.  
  Can someone share their knowledge with me regarding the proper setup for my environment?  Many Thanks!

  Hi,
  You can setup cluster with a single network but that leaves you with single point of failure on the Networking front, it is still recommended to have a heartbeat network.
  Live migration would still happen though Ethernet, it has nothing to do with FC. Don't get confused, you had iSCSI for storage which used one of your VLAN and now you have FC for your storage.
  Your hardware specs looks good. You can set up the following networks -
  1. Public Network - Team two or more NICs (based on bandwidth aggregation)
  2. Heartbeat Network - Don't use teamed Adaptor
  3. Live Migration - Team two or more NICs (based on bandwidth aggregation)
  Plan properly and draw guidelines to visualize and to remove single point of failure at all points.
  Feel free to ask if you have some more queries.
  Regards
  Prabhash

• SQL Ports For SCCM 2012 (Stand alone Server)

  Is there any reason to open port 1433 and 4022 if the SCCM server is a stand alone? It keeps displaying the error in the monitoring tab if i don't open the ports. The SQL  and SCCM  are on the same server.

  I have seen this error even when the ports are open. 
  If you get that problem then there isn't a workaround and you have to put up with the error. There is a open call with at Microsoft Connect about this but I don't think there is any progress on it. 
  https://connect.microsoft.com/ConfigurationManagervnext/feedback/details/1045929/hierarchy-monitoring-detected-that-the-configmgr-sql-server-fqdn-ports-1433-4022-are-not-active-on-firewall-exception
  P.S. You need a connect account and be a member of the Configmgr program to be able to view this.
  Cheers
  Paul | sccmentor.wordpress.com