Active Directory Firewall

Introduction

This project aims to provide production-ready and well-tested guidelines on configuring the Windows Firewall for Active Directory-related server roles.

Domain Controller Firewall

The following materials are currently available:

• 🛠️DCFWTool: Domain Controller Firewall Tool (zipped distribution of the source code)
• 📄 Whitepaper in HTML and PDF formats (both generated from the ADDS/README.md file)
• 📜Sample Firewall GPO HTML Report
• 📋List of Built-In Firewall Rules

References

Active Directory Domain Services

• 🌐How to configure a firewall for Active Directory domains and trusts
• 🌐Service overview and network port requirements for Windows
• 🌐How to restrict Active Directory RPC traffic to a specific port
• 🌐Configuring DFSR to a Static Port - The rest of the story
• 🌐Setting Up a Fixed Port for WMI

Active Directory Certificate Services

• 🌐Firewall Rules for Active Directory Certificate Services
• 🌐How to Configure a Static DCOM Port for AD CS

Active Directory Federation Services

• 🌐AD FS Required Ports and Protocols