We need to open firewall to have cDOT to connect to AD domain, but what LIF/IP will be used to talk to the external server?
and also what ports need to be opened?
Firwaall Admin needs to know this information.
Should it be cluster management LIF, nodes mgmt LIF's, or ...
Look at https://kb.netapp.com/support/index?page=content&id=3012724 In particular
Sessions established to NIS, LDAP, AD, WINS, DNS, NDMP, iSNS/Radius servers use any of the Data LIFs per vserver onthe node.