[Samba] firewalld services to open for an ADDC

I tried the following

firewall-cmd --add-service=dns --permanent
firewall-cmd --add-service=samba --permanent
firewall-cmd --reload

But was not able to connect until I disabled the iptables via
iptables -P INPUT ACCEPT
iptables -F

then I was able to connect my windows 10 pro to my domain.

So my question is what services or ports am I missing to open?

