設定適用於非網域成員允許 BranchCache 流量免Configure Firewall Rules for Non-Domain Members to Allow BranchCache Traffic

適用於:Windows Server(以每年次管道)、Windows Server 2016Applies To: Windows Server (Semi-Annual Channel), Windows Server 2016

設定第三方防火牆你並手動設定,允許快取分散式的模式執行 BranchCache 免 client 電腦,您可以使用此主題中的資訊。You can use the information in this topic to configure third party firewall products and to manually configure a client computer with firewall rules that allow BranchCache to run in distributed cache mode.

注意

  • 如果您已經設定 BranchCache client 電腦使用群組原則、 群組原則設定覆寫任何手動 client 電腦套用原則設定。If you have configured BranchCache client computers using Group Policy, the Group Policy settings override any manual configuration of client computers to which the policies are applied.
  • 如果您有部署 BranchCache DirectAccess 使用,您可以使用此主題中設定設定允許 BranchCache 流量 IPsec 規則。If you have deployed BranchCache with DirectAccess, you can use the settings in this topic to configure IPsec rules to allow BranchCache traffic.

資格在系統管理員,或相當於的最低需求變更這些設定。Membership in Administrators, or equivalent is the minimum required to make these configuration changes.

[MS PCCRD]: 對等內容快取,並擷取探索通訊協定[MS-PCCRD]: Peer Content Caching and Retrieval Discovery Protocol

快取分散式的戶端必須允許輸入 / 輸出 MS-PCCRD 流量的 Web 服務動態探索 (WS 探索) 通訊協定中執行。Distributed cache clients must allow inbound and outbound MS-PCCRD traffic, which is carried in the Web Services Dynamic Discovery (WS-Discovery) protocol.

防火牆設定必須允許多點的流量輸入 / 輸出流量除了。Firewall settings must allow multicast traffic in addition to inbound and outbound traffic. 您可以使用下列設定來設定防火牆例外分散式快取模式。You can use the following settings to configure firewall exceptions for distributed cache mode.

多點 IPv4 傳送: 239.255.255.250IPv4 multicast: 239.255.255.250

多點 IPv6 傳送: FF02::CIPv6 multicast: FF02::C

輸入流量: 本機連接埠: 3702,遠端連接埠: 暫時Inbound traffic: Local port: 3702, Remote port: ephemeral

輸出流量: 本機連接埠: 暫時、 遠端連接埠: 3702Outbound traffic: Local port: ephemeral, Remote port: 3702

計畫: %systemroot%\system32\svchost.exe (BranchCache 服務 [PeerDistSvc])Program: %systemroot%\system32\svchost.exe (BranchCache Service [PeerDistSvc])

[MS PCCRR]: 對等內容快取,並擷取: 擷取通訊協定[MS-PCCRR]: Peer Content Caching and Retrieval: Retrieval Protocol

快取分散式的戶端必須允許輸入 / 輸出 MS-PCCRR 流量的 HTTP 1.1 通訊協定執行如要求意見 (RFC) 2616年中所述。Distributed cache clients must allow inbound and outbound MS-PCCRR traffic, which is carried in the HTTP 1.1 protocol as documented in request for comments (RFC) 2616.

防火牆設定必須允許輸入 / 輸出流量。Firewall settings must allow inbound and outbound traffic. 您可以使用下列設定來設定防火牆例外分散式快取模式。You can use the following settings to configure firewall exceptions for distributed cache mode.

輸入流量: 本機連接埠: 80、 遠端連接埠: 暫時Inbound traffic: Local port: 80, Remote port: ephemeral

輸出流量: 本機連接埠: 暫時、 遠端連接埠: 80Outbound traffic: Local port: ephemeral, Remote port: 80