What ports need to be open if the GWAVA Appliance is behind a firewall?

Document ID:7019843
Creation Date:23-Sep-2009
Modified Date:07-Aug-2017
- Micro Focus Products:
  GWAVA (Secure Messaging Gateway)

Environment

GWAVA 4 build 120+ Linux

Situation

What ports need to be opened if GWAVA is behind a firewall? Answer/

Resolution

If the GWAVA appliance is set behind a firewall, or multiple firewalls, the following ports should be open for mail flow and GWAVA functions or services: Inbound and general traffic:

25 - TCP Inbound (Used for Mail)
465 - SSL

The following should be open to access the GWAVA appliance from outside the network:

49285 - TCP Inbound (QMS message release service)
49385 - TCP Inbound (SSL QMS message release service)
49282 - TCP Inbound (GWAVA Management Console)
49382 - TCP Inbound (SSL for GWAVA Management Console)
22 - TCP (SSH access. This can be a security concern, but may be necessary to enable for support access.)

Outbound traffic:

80 - TCP Outbound (Updates services for Antivirus, Signature Engine, and GWAVA system.)
21 - FTP Outbound (OS updates)
25 - TCP Outbound (Only if scanning outbound mail)
123 - TCP Outbound (Network Time Protocol (NTP))
1344 TCP/UDP

Inbound/Outbound:

49283
49284
49384
49286
49287
49288

Additional Information

This article was originally published in the GWAVA knowledgebase as article ID 1465.