How to enable search function for search server in DMZ

In one server farm, we can add one web/search server in DMZ. By default the external user can access the server. However, they can't search -- Index data has not been propagated the data to this search server.

 

We need to enable the following ports:

1. SMB protocol.

We need to enalbe 445 over TCP, 445 over UDP on the firewall, two-way trust.

2. RPC protocol.

1) On all the Indexer and Search servers, we need to add the following register keys:

HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc\Internet    

Ports: REG_MULTI_SZ: 5000-5020                  

PortsInternetAvailable: REG_SZ: Y                 

UseInternetPorts: REG_SZ: Y

2) Reboot all the Indexer and Search servers.

3) We also need to enable 135 over TCP, 135 over UDP on the firewall, two-way trust. 

4) We need to enable 5000-5020 ports over TCP on the firewall, two-way trust.

3. FRS (File Replication Service) protocol.

We can try to enable 49152 over TCP on the firewall, two-way trust. (I am not too sure if this port is needed).

After enabling the ports, force propagation on the Indexer server again.