Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Description
Depending on your ProxySG appliance configuration, you must open certain ports and
protocols on your firewalls for the appliance to function as intended, to use enabled
features, or to allow connectivity to various components and data centers. This
document presents basic configurations, and some commonly used options.
Note: This document also applies to the supported proxy components of the Advanced
Secure Gateway appliance.
Inbound-Only Connections
Default
Component Protocol Configurable Source Description
Port
Appliance
444 TCP No Symantec server Certificate updates
certificate
BCAAA
authentication Authentication-and authorization-related
authentication queries to the configured server
with COREid, IWA, 16101 TCP Yes
server
SitemInder, and See TECH243202 for details.
XML realms
LDAP 389 TCP/UDP Yes IWA server LDAP for IWA Direct authentication
Log client (custom) 69 TCP Yes Custom log server Sending access logs to configured server
Default Configu
Component Protocol Source Description
Port rable
Log client
(Symantec 9081 TCP Yes Reporter Deprecated log streaming to Reporter version 9
Reporter client)
Log client (SCP) 22 TCP Yes SCP log server Sending access logs to configured server
Monitoring
statistics to Management Export of monitoring statistics to
9010 TCP No
Management Center Management Center
Center (secure)
NTP 123 UDP Yes NTP server Periodic time update from default or
configured NTP servers
139,
SMB TCP Yes IWA server CIFS services in transparent deployments
445
Default Configu
Component Protocol Source Description
Port rable
Inbound/Outbound Connections
Default
Component Protocol Configurable Source Description
Port
origin
Flash media 1935 TCP/UDP No content Streaming Flash and RTMP
server
origin
Real Media 554 UDP No content Streaming Real Media (RTSP)
server
SafeNet
SafeNet Java HSM 8443 TCP Yes Communication with SafeNet Java HSM
Java HSM
origin
Windows Media 1755 UDP No content Streaming Windows Media (MMS)
server
Antivirus
pattern updates
8.28.16.208 from Content
av-download.bluecoat.
Symantec Content HTTPS 103.246.38.208 Analysis
443 com
Analysis TCP 199.19.249.208 (Not applicable
199.116.169.248 to Advanced
Secure
Gateway)
Malware
reporting from
Content
HTTPS contentanalysis- Analysis
Content Analysis 443 199.116.169.239
TCP ma.es.bluecoat.com (Not applicable
to Advanced
Secure
Gateway)
HTTPS device- Appliance license
Licensing 443 155.64.49.132
TCP services.es.bluecoat.com management
Component Ports Protocols URLs IP Addresses Description
Subscription-
HTTPS
Licensing 443 subscription.es.bluecoat.com 8.28.16.243 based services
TCP
management
HTTPS License
Licensing 443 services.bluecoat.com
TCP administration
Symantec
HTTPS appliance
PKI - Appliance validation 443 abrca.bluecoat.com
TCP Certificate
Authority
Time zone
199.91.133.16
NTP 80 HTTP TCP download.bluecoat.com database
155.64.49.133
downloads
Appliance
HTTPS heartbeat
Diagnostics 443 hb.bluecoat.com
TCP information to
Symantec
8.28.16.206
103.246.38.206
199.19.249.206
199.116.169.246
WebFilter, IWF,
Only IP address
HTTPS is returned when Optenet, and
Content filtering 443 list.bluecoat.com there is a DNS Proventia
TCP
query. If the IP database
address fails to downloads
respond, one of
the other active
addresses is
returned.
Component Ports Protocols URLs IP Addresses Description
Web Security
Symantec Web Security HTTPS
443 portal.threatpulse.com Service
Service TCP
registration
HTTPS Security
Threat protection 443 securitylabs.es.bluecoat.com 8.28.16.7
TCP intelligence
199.19.249.201
199.19.249.203
199.116.169.244
199.116.169.245
8.28.16.201
8.28.16.203
103.246.38.201
103.246.38.203
103.246.39.212
103.246.39.213
103.246.36.212
103.246.36.213
54.233.145.171
54.207.85.173
123.103.64.94*
123.103.64.95*
197.96.129.181
webpulse.es.bluecoat.com
80 HTTPS 197.96.129.182 Symantec Global
Threat protection sp.cwfservice.net 199.116.173.201 Intelligence
443 TCP
(version 6.5.x) 199.116.173.203 Network updates
199.116.173.215
180.179.142.109
13.114.137.119
52.64.80.74
13.114.129.165
13.54.6.129
180.179.142.110
8.28.16.202
46.235.158.215
52.65.118.140
54.64.46.133
54.207.87.150
103.246.38.202
180.179.142.115
185.2.196.215
199.19.249.211
199.116.169.242
Component Ports Protocols URLs IP Addresses Description
199.116.173.215
35.157.189.75
18.195.189.47
3.121.119.187
* These
addresses are
returned only
when the
request
originates in
China.