If you are looking at end-user access, then you only to make 443 and 80 available.
Depending on the systems you need to integrate, the ports will vary. For example, communication from RabbitMQ to the AD connector is on port 5672. If you are connecting to LDAP its going to 389 or 636.
If you can share more details, we can guide you better.