B.1 Windows Firewall Requirements

The Windows Firewall has different default configurations on Windows Server 2012 R2, Windows Server 2012, and Windows Server 2008 R2.

In most cases, the Storage Manager installation enables the following firewall settings. In the rare circumstances where it does not, you will have to establish these manually.

  • The Engine must be permitted to make outbound connections.

  • The Engine must be able to listen on ports 3008 and 3009. These are the default port choices that are presented during the installation and configuration. If you use different values, you must adjust the firewall port exceptions to match the port values.

  • The Agent must be permitted to make outbound connections.

  • The Agent must be able to listen on ports 3010 and 3011. These are the default port choices that are presented during the installation and configuration. If you use different values, you must adjust the firewall port exceptions to match the port values.

  • The Event Monitor component must be permitted to make outbound connections.

  • On each server hosting user or collaborative storage with managed quota, you must enable the Remote File Server Resource Manager Management - FSRM Service (RPC-In) firewall rule.

On servers running Windows Server 2008, the firewall settings are applicable to each of three different categories of network interfaces that are identified based upon their IP address range (public IP addresses versus private IP addresses) and whether or not the computer is a member of a domain. Depending upon the specific environment where Storage Manager for Active Directory is installed, the firewall might need to have these exceptions enabled in one or more of the following categories:

  • Domain

  • Private

  • Public