Configuring Windows Firewall on the DPM Server

  • Article

Applies To: System Center Data Protection Manager 2010

For a protection agent to communicate with the DPM server through a firewall, you must configure exceptions for the firewall. The following procedure applies to configuring Windows Firewall. If Windows Firewall is enabled on the DPM server when you install DPM, DPM Setup configures the firewall automatically. For more information about configuring other software or hardware firewalls, consult the vendor documentation.

To configure Windows Firewall on a DPM server

  1. In Server Manager, expand Configuration and then expand Windows Firewall with Advanced Security.

  2. In the Overview area, verify that Windows Firewall is on for all profiles, and then click Inbound Rules.

  3. To create a new exception, do the following:

    1. In the Actions pane, click New Rule to open the New Inbound Rule Wizard.

    2. On the Rule Type page, verify that Program is selected, and then click Next.

    3. On the Program page, click Browse for the This program path box, navigate to <system drive letter>:\Program Files\Microsoft DPM\DPM\bin, click Msdpm.exe, click Open, and then click Next.

    4. On the Action page, leave the default setting of Allow the connection, or modify the settings according to your organization’s guidelines, and then click Next.

    5. On the Profile page, leave the default settings of Domain, Private, and Public, or modify the settings according to your organization’s guidelines, and then click Next.

    6. On the Name page, type a name for the rule and optionally a description, and then click Finish.

      Note

      The DPM default name for this exception is Microsoft System Center Data Protection Manager 2010.

  4. To create a new exception, do the following:

    1. In the Actions pane, click New Rule to open the New Inbound Rule Wizard.

    2. On the Rule Type page, verify that Program is selected, and then click Next.

    3. On the Program page, click Browse for the This program path box, navigate to <system drive letter>:\Program Files\Microsoft DPM\DPM\bin, click Dpmra.exe, click Open, and then click Next.

    4. On the Action page, leave the default setting of Allow the connection, or modify the settings according to your organization’s guidelines, and then click Next.

    5. On the Profile page, leave the default settings of Domain, Private, and Public, or modify the settings according to your organization’s guidelines, and then click Next.

    6. On the Name page, type a name for the rule and optionally a description, and then click Finish.

      Note

      The DPM default name for this exception is Microsoft System Center Data Protection Manager 2010 Replication Agent.

  5. To create a new exception, do the following:

    1. In the Actions pane, click New Rule to open the New Inbound Rule Wizard.

    2. On the Rule Type page, click Port, and then click Next.

    3. On the Protocols and Ports page, verify that TCP and Specific local ports options are selected, in the Specific local ports box, type 135, and then click Next.

    4. On the Action page, leave the default setting of Allow the connection, or modify the settings according to your organization’s guidelines, and then click Next.

    5. On the Profile page, leave the default settings of Domain, Private, and Public, or modify the settings according to your organization’s guidelines, and then click Next.

    6. On the Name page, type a name for the rule and optionally a description, and then click Finish.

      Note

      The DPM default name for this exception is DPMRA_DCOM_135.