Hi @Roger Roger ,
Thanks for posting in Microsoft Q&A forum.
Port 445 and 135 are also need to be opened. And one way is enough for a standard Distribution Point, all distribution is initiated by the Primary site server by the Package Transfer Manager.
Please refer to the following information:
Site Server --> Distribution Point (unidirectional)
Server Message Block(SMB) 445 TCP
RPC Endpoint Mapper 135 UDP and TCP
Site Server --> Cloud Distribution Point (unidirectional)
HTTPS 443 TCP
For more details, the article provided by GarthJones is great, we could use that as a reference:
https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/ports
If the response is helpful, please click "Accept Answer"and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.