virtualbox-win2003-terminal-server-nat-port-redirection
DOESN'T WORK so far - can't listen for return ports on host?
MS TS requires port 3389, but for security (and scalability) we'll use 33899 on the host. Additionally, the router can be configured to port redirection of 33899 (e.g. draytek vigor 2910 NAT -> Port Redirection )
VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/vrdp/Protocol" TCP VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/vrdp/GuestPort" 3389 VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/vrdp/HostPort" 33899
NOTE: the above lines merely edit the vm XML file in a compatible format... once you get the hang of it you COULD just modify or add them to the file directly... =p
Then, if your TS is on a domain, you'll need the Active Directory ports
Kerberos Ports
VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/krbu/Protocol" UDP VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/krbu/GuestPort" 88 VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/krbu/HostPort" 33888
VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/krbt/Protocol" TCP VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/krbt/GuestPort" 88 VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/krbt/HostPort" 33888
Netbios ports
VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbtd/Protocol" UDP VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbtd/GuestPort" 137 VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbtd/HostPort" 33137
VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbtn/Protocol" UDP VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbtn/GuestPort" 138 VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbtn/HostPort" 33138
VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbts/Protocol" TCP VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbts/GuestPort" 139 VBoxManage setextradata tstest "VBoxInternal/Devices/e1000/0/LUN#0/Config/nbts/HostPort" 33139
NetBIOS name service 137/tcp 137/udp NetBIOS Name NetBIOS session service 139/tcp NetBIOS datagram service 138/udp NetBIOS Netlogon and Browsing
TCP ports 137, 138, 139
TCP port 88 Kerberos authentication
Service Port/protocol RPC endpoint mapper 135/tcp, 135/udp
LDAP 389/tcp
Microsoft's list of the ports
http://support.microsoft.com/default.aspx?scid=kb;en-us;832017
Net Logon The Net Logon system service maintains a security channel between your computer and the domain controller to authenticate users and services. It passes the user's credentials to a domain controller and returns the domain security identifiers and user rights for the user. This is typically referred to as pass-through authentication. Net Logon is configured to start automatically only when a member computer or domain controller is joined to a domain. In the Windows 2000 Server and Windows Server 2003 families, Net Logon publishes service resource locator records in the DNS. When this service runs, it relies on the Server service and on the Local Security Authority service to listen for incoming requests. On domain member computers, Net Logon uses RPC over named pipes. On domain controllers, it uses RPC over named pipes, RPC over TCP/IP, mailslots, and Lightweight Directory Access Protocol (LDAP).
NetBIOS Datagram Service UDP 138 NetBIOS Name Resolution UDP 137 NetBIOS Session Service TCP 139
SMB TCP 445
RPC? TCP 135, random port number between 1024 - 65535 135, random port number between 49152 - 65535?