SBS2003 – Required Ports

This information comes from the Microsoft “Securing your SBS2003 Network” document, which can be found at: http://download.microsoft.com/download/1/f/1/1f15a874-f696-4992-b5ad-b1e7b258de1c/SecuringSBSnetwork.doc


Services and TCP Port Numbers





































Service


TCP Port Number


Inbound Access


Recommendations


E-mail


25


Allow if you are using Exchange to receive Internet e-mail.


Web server


80 (required for HTTP requests for your site) and 443 (required for HTTPS requests using Secure Sockets Layer (SSL), which secures communications from your server and a Web browser)


Allow if users on the Internet need to access specific Web-site services on your server.


Web-site services that use port 80 and/or port 443 include the following:


-Microsoft® Office Outlook® Web Access (OWA)


-Windows Small Business Server 2003 server performance and usage reports


-Outlook Mobile Access (OMA).


-Business Web site (wwwroot), which allows users to access the company’s Internet Web site from the Internet.


-Outlook via the Internet (RPC over HTTP) feature of Outlook 2003.


Windows SharePoint Services intranet site


444


Allow if users securely access the intranet Web site created by Microsoft® Windows® SharePoint™ Services from the Internet.


Remote Web Workplace


4125 and 443


Allow if users securely access Remote Web Workplace to:


-Connect to the local network from OWA


-Create a direct Remote Desktop Web (RWW) Connection to client computers on the local network.


-Use the Windows SharePoint Services intranet site (this also requires port 444, as noted above).


-Download Connection Manager to configure the remote client computer for remote access (using remote access also requires that port 1723 be open, as noted below).


Virtual private network (VPN)


1723


Allow if remote clients connect securely to the network using a VPN connection to use resources as if the client was connected locally.


Terminal Services


3389


Allow if remote clients connect to the computer running Windows Small Business Server 2003 using Terminal Services.


File transfer protocol (FTP)


21


Allow if remote clients use file transfer protocol (FTP) to connect to the computer running Windows Small Business Server 2003.


 

3 thoughts on “SBS2003 – Required Ports

  1. does ‘Outlook via the Internet’ use port 443 (https) or 80 (http)?

    If it’s 80 can it be changed to use only 443 (don’t want to open port 80)?

  2. Someone please help! I’m getting the errror

    "Picture Manager is unable to open pictures over the Internet that are not from a Windows SharePoint Services picture library. Please specify a valid picture library and try again."

    Contrary to every post I’ve found, this is not a problem with activex or not having picture manager installed. In the picture library via both intra and internet I can use the upload and edit features. On the intranet I can also use download and send to, but I get the above error on the internet. Oddly enough when I changed the SPS to port 443 everything worked fine, but I need the services I had to disable to test this port change. I’m ready to just switch to http://FTP... sps is wearing me thing!

    Thanks,

    Jason

Leave a Reply

Your email address will not be published. Required fields are marked *