You are the Exchange administrator for the Nutex Corporation’s Exchange organization. Nutex has
single Active Directory domain named nutex.com. All Exchange server roles are running Exchange
2010 SP1. You have each server role on a separate subnet. The routers used to create the subnets
have firewall capabilities. Which ports should be open on the firewall? (Choose two.)
A.
You should consider opening TCP port 25, TCP port 135, TCP port 389, TCP port 443, TCP port 993,
and TCP ports 5060 to 5062 for the Hub Transport server to communicate with other Exchange
server roles and other services.
B.
You should consider opening TCP port 53, TCP port 389, TCP port 443, TCP port 993, and TCP port
995 for the Client Access server to communicate with other Exchange server roles and other
services.
C.
You should consider opening TCP port 135, TCP port 389, TCP port 443, and TCP port 3268 for the
Mailbox server to communicate with other Exchange server roles and other services.
D.
You should consider opening TCP port 25, TCP port 88, TCP port 389, TCP port 443, TCP port 3268,
and UDP ports 1024 to 65535 for the Unified Messaging server to communicate with other Exchange
server roles and other services.
Explanation:
You should consider opening TCP port 25, TCP port 88, TCP port 389, TCP port 443, TCP port 3268,
and UDP ports 1024 to 65535 for the Unified Messaging server to communicate with other Exchange
server roles and other services. The Unified Messaging server needs to have TCP port 25 open for
SMTP communication with the Transport server. TCP port 88 is used for Kerberos communication.
TCP port 389 is used for LDAP communication with Active Directory. TCP port 443 is used for SSL
communication used by the Unified Messaging Web service. UDP ports 1024 to 65535 are used for
Unified Messaging Phone interaction.
You should consider opening TCP port 53, TCP port 389, TCP port 443, TCP port 993, and TCP port
995 for the Client Access server to communicate with other Exchange server roles and other
services. TCP port 53 is used to communicate with the DNS server. TCP port 389 is used for LDAP
communication with Active Directory. TCP port 443 is used for SSL communication used by Exchange
Web services. TCP port 995 is used for secure communication with POP3. TCP port 993 is used for
secure communication with IMAP4.
You should not open TCP port 993 and TCP 5060 to 5062 for the Hub Transport server to
communicate with other Exchange server roles. A Hub Transport server will use the following:
• TCP port 25 for SMTP communications.
• TCP port 135 to communicate with a Mailbox server via MAPI
• TCP port 389 to allow communications with Active Directory
• TCP port 443 for HTTPS communications with an Active Directory Rights Management Services
server
TCP port 993 is used for secure IMAP4 communication. IMAP4 is used for communication with Client
Access server. TCP 5060 to 5062 is used for communication from a Client Access server to a Unified
Messaging server. You should not consider opening TCP port 443 for the Mailbox server to
communicate with other
Exchange server roles and other services. TCP port 443 is not used by the Mailbox server. TCP port
3268 is used by the Mailbox server for LDAP access to a global catalog server.