This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(265.6, 72%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERR%3C/text%3E%3C/svg%3E)
Hi All
i am new to configuration manager. i need to add a boundary i.e add a new subnet and associate it with boundary group.
lets say i have a new subnet 192.168.50.0. I have primary site server configmgr01 and a distribution point configdp01.
i need to allow the ports on firewall so that my servers in the new subnet can communicate with the primary site server and distribution points and i can push updates and install applications.
Will the below ports are enough to be allowed on the firewall, and are the ports unidirectional or bidirectional. please guide me.
Source: 192.168.50.0/24
Destination: configmgr01 & configdp01
Ports: 80/443/8530/8531
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 67%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHM%3C/text%3E%3C/svg%3E)
Hi @Roger Roger ,
Thanks for posting in Microsoft Q&A forum.
Port 445 and 135 are also need to be opened. And one way is enough for a standard Distribution Point, all distribution is initiated by the Primary site server by the Package Transfer Manager.
Please refer to the following information:
Site Server --> Distribution Point (unidirectional)
Server Message Block(SMB) 445 TCP
RPC Endpoint Mapper 135 UDP and TCP
Site Server --> Cloud Distribution Point (unidirectional)
HTTPS 443 TCP
For more details, the article provided by GarthJones is great, we could use that as a reference:
https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/ports
If the response is helpful, please click "Accept Answer"and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
Hi @Roger Roger ,Hope things are going well. I am writing to see if there's any update on our issue. If yes, feel free to let us know.
Here is the list of Port that are required for everything. https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/ports