This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 61%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
We have a situation in the environment, Domain controllers are hosted by a vendor and their data center and Exchange servers are hosted by a different vendor in their data center. We have a request from Exchange application team to open ANY to Any communication between domain controllers and Exchange servers. This request is being rejected by the Company Security and Firewall team. Can someone had this experience? and Can share the List of Firewall Ports required between DC and Exchange server communication?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 22%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKY%3C/text%3E%3C/svg%3E)
Hi @VB
I am writing here to confirm with you how thing going now?
If you have any questions or needed further help on this issue, please feel free to post back.
Hello KaelYao-MSFT ,
Unfortunately, no one has complete answer and all are pointing Microsoft article that says Any to Any communication is recommended. In the real time this is the hard to achieve, specially in Enterprise with Multi vendor scenario. Every vendor challenge request to open Any to Any communication between domain controllers and Exchange servers.
I'd start with these ones.
https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/config-firewall-for-ad-domains-and-trusts#windows-server-2008-and-later-versions
and more are listed here.
https://learn.microsoft.com/en-us/troubleshoot/windows-server/networking/service-overview-and-network-port-requirements
--please don't forget to upvote and Accept as answer if the reply is helpful--
Just to be clear, all ports must be open between Exch and the DCs to be supported:
Thanks Andy,
This statement from Microsoft and Support Request response from Microsoft has been presented to Security. Still They are not ready to open Any to Any communication and Looking for specific port list.
Yea, I figured :) . But just wanted to point that out: in case it was missed :)