What ports need to be opened on internal or external firewalls when deploying ProxySG?


<< Back to Knowledge Search

Solution

Overview

In addition to all ports needed for standard traffic, there may be several ports required to be opened depending on which features are implemented.

PortType

Direction in relation
to the ProxySG

Description
21TCPOutboundFTP - used to send access logs to a logging server like Blue Coat Reporter
22TCPInboundSSH management of the ProxySG
53bothOutboundDNS
123UDPOutboundNetwork Time Protocol (NTP)
514UDPOutboundSyslog - used to send event log messages to a syslog server
8081TCPInboundHTTP management of the ProxySG
8082TCPInboundHTTPS management of the ProxySG
9081TCPOutboundLog streaming to Blue Coat Reporter
15868TCPOutboundWebsense policy server
16101TCPOutboundBCAAA - used for authentication communication with IWA authentication services

 

There may be several ports required to be opened externally as well.

PortTypeInternet
or WAN
Direction in relation
to the ProxySG
Description
443TCPInternetOutboundUsed to send daily heartbeats to Blue Coat (box health updates), retrieve Blue Coat Web Filter updates,
license updates, etc.
3034
3036
TCPWANInbound & OutboundApplication Delivery Network (ADN) used for explicit connections between two ProxySG peers

 

Cause
Resolution
Workaround
Additional Information
Bug Number
InQuira Doc IdFAQ478
Attachment

Article Feedback

Hide Properties
First Published      10/01/2014
Last Modified      10/01/2014
Last Published      10/01/2014
Article Audience
Product      ProxySG
Software      SGOS 4, SGOS 5
Topic      Networking
Article Number      000015463
Summary     
Was this helpful?
Comments:
 
Previous MonthNext Month
SunMonTueWedThuFriSat