How to Configure RPC Dynamic Port through Firewall

Updated December 2023: Stop getting error messages and slow down your system with our optimization tool. Get it now at this link
  1. Download and install the repair tool here.
  2. Let it scan your computer.
  3. The tool will then repair your computer.

Dynamic port assignment for remote procedure call (RPC) is used by remote administration applications such as Dynamic Host Configuration Protocol (DHCP) Manager, Windows Internet Name Service (WINS) Manager, etc. The dynamic assignment of RPC ports tells the RPC program to use a particular random sport above 1024.

Customers who use firewalls can control the ports used by RPC so that their firewall router can be configured to forward only TCP (Transmission Control Protocol) ports.

Many server and remote management applications use dynamic assignment of remote procedure call ports. Although dynamic, it is important that they follow a scope rule, as clients or client machines can ensure that the firewall does not block these ports or areas. When selecting a range for the dynamic RPC port, make sure that Windows and major Microsoft products do not use these ports.

December 2023 Update:

You can now prevent PC problems by using this tool, such as protecting you against file loss and malware. Additionally it is a great way to optimize your computer for maximum performance. The program fixes common errors that might occur on Windows systems with ease - no need for hours of troubleshooting when you have the perfect solution at your fingertips:

  • Step 1 : Download PC Repair & Optimizer Tool (Windows 10, 8, 7, XP, Vista – Microsoft Gold Certified).
  • Step 2 : Click “Start Scan” to find Windows registry issues that could be causing PC problems.
  • Step 3 : Click “Repair All” to fix all issues.


Add a rule to allow traffic to dynamic RPC ports.

  • Go to Computer Configuration > Policies > Windows Settings > Security Settings > Windows Firewall with Advanced Security > Windows Firewall with Advanced Security – LDAP > Incoming Rules.
  • Right-click and select New Rule.
  • Select Custom and click on Next.
  • Select All Programs and click on Next.
  • Select TCP as the protocol type.
  • Select Dynamic RPC Ports as the local port and click Next.
  • Specify the IP address of the scanning node in the list of remote IP addresses or select an IP address and click Next.
  • Select Allow connection and click on Next.
  • Check the boxes that correspond to the machine’s connection conditions and click Next.
  • Specify Radar RPC Dynamic Ports as the name and click Finish.

Use of the Registry

Type regedit at the Run prompt and press Enter. The registry editor opens. Now navigate to:


  1. Right-click on RPC and create a new Internet key, followed by the specified data types:
  2. Name: Ports | Type : Multiple string value (REG_MULTI_SZ)
  3. Name: InternetPortsAvailable | Type : String of characters (REG_SZ)
  4. Name : UseInternetPorts | Type : String of characters (REG_SZ)


Configuration validation

I think the best way to validate the changes is to use a sniffer to record traffic and use remote WMI (which uses RPC) via PowerShell:

Prepare a test machine and a second one and make sure that the second machine can access the test machine in the configured ports and 135 (the RPC port mapper).
Install Network Monitor (or another sniffer) on one of the computers and record RPC traffic.

Run the following PowerShell command from the second machine:

gwmi win32_operatingsystem -comp TEST

Make sure that the call is successful (no errors) and that the recorded traffic is within the port range we have previously configured.

Expert Tip: This repair tool scans the repositories and replaces corrupt or missing files if none of these methods have worked. It works well in most cases where the problem is due to system corruption. This tool will also optimize your system to maximize performance. It can be downloaded by Clicking Here