What ports need to be open if the GWAVA Appliance is behind a firewall?

  • 7019843
  • 23-Sep-2009
  • 07-Aug-2017

Environment

GWAVA 4 build 120+ Linux

Situation

What ports need to be opened if GWAVA is behind a firewall? Answer/

Resolution

If the GWAVA appliance is set behind a firewall, or multiple firewalls, the following ports should be open for mail flow and GWAVA functions or services: Inbound and general traffic:

  • 25 - TCP Inbound (Used for Mail)
  • 465 - SSL

The following should be open to access the GWAVA appliance from outside the network:

  • 49285 - TCP Inbound (QMS message release service)
  • 49385 - TCP Inbound (SSL QMS message release service)
  • 49282 - TCP Inbound (GWAVA Management Console)
  • 49382 - TCP Inbound (SSL for GWAVA Management Console)
  • 22 - TCP (SSH access. This can be a security concern, but may be necessary to enable for support access.)

Outbound traffic:

  • 80 - TCP Outbound (Updates services for Antivirus, Signature Engine, and GWAVA system.)
  • 21 - FTP Outbound (OS updates)
  • 25 - TCP Outbound (Only if scanning outbound mail)
  • 123 - TCP Outbound (Network Time Protocol (NTP))
  • 1344 TCP/UDP

Inbound/Outbound:

  •  49283
  •  49284
  •  49384
  •  49286
  •  49287
  •  49288

Additional Information

This article was originally published in the GWAVA knowledgebase as article ID 1465.