For security concerns, in our environment we block all the inbound ports of our desktops. However, seems I can't AD domain. However, if I add the following firewall rule:
- Source: domain controller
- Destination: desktop client
- ports: all
- Allow: yes
I can join domain successfully
So I wonder if any inbound client port is used. However, I googled but I couldn't find any "official" answer. (I could find the inbound ports required for a domain controller, but that's not what I want). Could anyone give me some advices?