[36148] in Kerberos
Re: Which port must be opened on a Firewall for Kerberos?
daemon@ATHENA.MIT.EDU (Kenneth MacDonald)
Mon May 26 09:47:05 2014
From: Kenneth MacDonald <Kenneth.MacDonald@ed.ac.uk>
To: kerberos@mit.edu
In-Reply-To: <87ppj0fzd8.fsf@gmail.com>
Date: Mon, 26 May 2014 14:46:50 +0100
Message-ID: <1401112010.5790.722.camel@ion.is.ed.ac.uk>
Mime-Version: 1.0
Content-Disposition: inline
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On Mon, 2014-05-26 at 15:22 +0200, csanyipal@gmail.com wrote:
> Hi,
>
> my home server get his static address from my ISP with DHCP to specific
> MAC address of the eth0.
>
> So, it seems that, that I'm behind a firewall of my ISP.
>
> Which ports must be opened on a firewall ( on firewall of my ISP, or on
> firewall of mine ), so I can reach my Kerberos server on my home server
> from my mobile phone or from the Internet?
Port 88 over UDP (and TCP if you configured your KDC to listen on it)
will get you authentication and tickets.
You should think before opening up the next two ...
Port 464 UDP & TCP if you want to be able to change passwords.
Port 749 TCP if you want to be able to access kadmind.
Cheers,
Kenny.
--
The University of Edinburgh is a charitable body, registered in
Scotland, with registration number SC005336.
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
