It took a while, but I’ve updated the Exchange 2010 SP1 Network Ports diagram I first published in December. Note that the updated version is based on SP1, which you can find in the way to change the address book service for example.
For this version, I’ve included clients, 3rd party SMTP elements, UM and OCS/Lync components and a small list of how to change ports or fix dynamic port settings.
You can download the diagram here. When you got feedback, use the comments or send me an e-mail. Otherwise, feel free the use it; crediting or a reference is appreciated.
Update: Small correction, 135/TPC RPC endpoint mapper from Outlook to Client Access Server was missing (Thanks Maarten).
Update (13Aug11): The Visio can be downloaded through here.
EighTwOne (821) 
nice work
LikeLike
Pingback: Exchange 2010 SP1 Network Ports Diagram v0.3 « MS Tech BLOG
Excellent work – I will definitely have this in my Exchange “toolbox” :). Ideas for version 0.32 could be to add a TMG/UAG…
LikeLike
Pingback: Exchange 2010 SP1 Network Diagram – Update « Rodrigo Rodrigues .:. www.andersonpatricio.org
Very Good!!!
LikeLike
This is very nice. I perform lots of deployments and write several design docs so I will definitely find a place in those docs for this visio. Great stuff and I will make sure I give credit where credit is due (to you). Again, thanks
LikeLike
Pingback: Exchange 2010 SP1 Network Ports Diagram
Hi,
good work. Its very helpful.
Thank You!!!!!!!!!
LikeLike
Pingback: Flux Exchange 2010 SP1 « Exchange your Mind
Good work!, very useful, thanks for update!
Arman.
LikeLike
Thank you for the wonderfull presentation
LikeLike
Nicely formatted mon frere! That looks like it started life as a Visio diagram. Any chance of the Visio for amendments and additions? Yes, I could do it myself from scratch but its a busy week…
LikeLike
Hi there
Yes, it would be great to get our hands on the visio version so re-producing this great doc!
Any chance we get the Visio file format?
Cheers
Ken
LikeLike
Hi Michel,
Excellent work!!, maybe add load balancers in this diagram as well ?
Is it possible to get the Visio file as well …?
Thx
LikeLike
Again awesome work. I was also wondering if i could get the visio version if you have it available. I will still give credit on the doc, but i would need to update to include load balancing.
Thanks in advance,
Scott
LikeLike
I’m considering it given the many requests.
LikeLike
Hi there,
We can’t sleep without this visio doc 🙂
Please post it for us to leverage this great document.
Thanks
Ken
LikeLike
Excellent work!!! Will be sure to give credit where it’s due. We’ve been looking for a diagram like this! Kudos.
LikeLike
Pingback: Visio of Exchange 2010 SP1 Network Ports Diagram v0.31 « EighTwOne (821)
Per request: The Visio can be downloaded here:
https://eightwone.com/2011/08/10/visio-of-exchange-2010-sp1-network-ports-diagram/
LikeLike
much appreciated
Thanks alot
LikeLike
Pingback: Exchange Server 2010 SP1′de kullanılan portlar « Bir ve Sıfır
Pingback: Exchange Server 2010 SP1′de Kullanılan Portlar « Uğur Demir
Thank you! Very good work!!
LikeLike
Pingback: Exchange 2010 SP1 Network Ports Diagram | Serkan Varoğlu
I love you man. Beats the hell out of MS article on the same topic !
LikeLike
Hi,
Can I publish it into my team blog (http://www.msitpro.com.br)?
Regards,
LikeLike
Sure, with proper credits and link to source.
LikeLike
Pingback: 2011, a short Retrospective « EighTwOne (821)
Very detailed and complete. I deploy load balancing by this document.
LikeLike
very nice technical document, i think we all appreciate the time and effort involved in creating something as detailed as this.
LikeLike
Michel, thanks for putting this together. A few questions.
I do see port TCP/808 for MRS on this diagram.
Also, there are a few “Dynamic/TCP” that do not have reference numbers associated, for instance Dynamic/TCP between the CAS and the Mailbox, and Dynamic/TCP between Mailbox and Mailbox. Are those supposed to be reference (3)?
Do you know if these ports are able to be set to static ports?
Thanks!
Scott Jaworski
jaworskiblog.com
LikeLike
Pingback: 2012, a short Retrospective | EighTwOne (821)
Pingback: Exchange 2010 SP1 Network Ports Diagram … | Ian Works Here
According to your diagram 5 ports need to be open between Exch servers and AD DCs.
Below article talks about opening ports between Exchange servers or Exchange Servers and domain controllers. This article clearly states : Starting with Exchange Server 2007 and current as of Exchange Server 2013, having network devices blocking ports/protocols between Exchange servers within a single organization or between Exchange servers and domain controllers in an organization is not supported. A network device may sit in the communication path between the servers, but a rule allowing “ANY/ANY” port and protocol communication must be in place allowing free communication between Exchange servers as well as between Exchange servers and domain controllers.
http://blogs.technet.com/b/exchange/archive/2013/02/18/exchange-firewalls-and-support-oh-my.aspx
More Information : http://technet.microsoft.com/en-us/library/bb331973%28v=exchg.141%29.aspx
LikeLike
Who said anything about blocking? This is a reference – despite the ANY/ANY rule, network people in general want to know what ports are used.
LikeLike
Pingback: EighTwOne 2013 Annual Report | EighTwOne (821)
This is great! It definitely helps me to see the ‘big picture’ more clearly. Thanks for putting the time and effort into this.
LikeLike
Thanks for this. This helps a lot. Much simpler than Microsoft’s own documentation as seen here http://technet.microsoft.com/en-us/library/bb331973.aspx
LikeLike
Pingback: All Exchange 2010 network communications in a diagram | Bhargav's IT Playground
wow, this is great. Thank you a lot for your work. This is a much better document than MS.
LikeLike
Hi Michel,
Do you also have plans (or already got one) for Exchange 2013?
Would be very much appreciated!
LikeLike
The general recommendation is now ANY/ANY for supported deployments. I know network people usually want a list nonetheless, but that is still on my nice-to-haves to do list (and not at the top I’m afraid).
LikeLike
I Michel very nice work.
When you say “The general recommendation is now ANY/ANY for supported deployments” is this is the Microsoft recomendation?
LikeLike
Supported: Filtering client-Exchange traffic
Not supported: Filtering DC/GC-Exchange and Exchange/Exchange traffic
http://blogs.technet.com/b/exchange/archive/2013/02/18/exchange-firewalls-and-support-oh-my.aspx
LikeLike
Great Stuff, very much thanks to you. have you created the similar diagram for Exchange 2013 and 2016 as well ?? Please advise !
LikeLike
No, as Ex2013/2016 requires full-mesh access, mainly port 443.
LikeLike
Pingback: Exchange Server 2010 SP1'de kullanılan portlar | port135.com