outbound ports that On100 needs to have open

lfausak · ‎08-17-2011

I noticed that one of the customers was in 'Unknown' status. The icon

on the overview listing was a ? after the activation occured. This was odd, because

the customer was displaying all of the topology, events were working,

but the status was a persistent ? character. We did some debugging and

found out that some ports need to be open for the On100 to function properly.

This is an excerpt of the User Guide on page 22:

* Port 53 UDP (DNS)

* Port 80 TCP (HTTP)

* Port 123 UDP (NTP)

* Port 443 TCP (HTTPS)

* Port 14931 UDP (WAN Network Performance monitoring via the OnPlus Network Agent)

* Ports 11300 UDP and 11400 UDP

Normally these ports are open in the outbound direction. But, if you are setting up

outbound filters and wish to use the On100, you will need to keep these ports open.

---greg

jamwyatt · ‎08-19-2011

There's a mistake in the port list and the mistake is also in the documentation ( I failed to review this section closely during the 'many' reviews ). The ports 11300 and 11400 are TCP ports, not UDP ports.

Sorry for any confusion!

Robert

Michael Holloway · ‎08-19-2011

Also, when connecting to the portal with a web browser, these ports need to be open for OnPlus service to work properly:

UDP 53 (DNS)

TCP 80 (HTTP)

TCP 443 (HTTPS)

TCP 11305 (Tunnel connections)

TCP 11700-11800 (Tunnel connections)

Christopher Bearman · ‎08-22-2011

TCP 12330 should also be on the list. The customer dashboard (topology / device list) uses this port for real-time communication with the OnPlus portal.