Configure Network Settings
Depending on your network configuration, you may need to configure your firewall to allow access using the following ports. SMTP and DNS services must have access to the internet.
The web security appliance must be able to listen on the following ports:
-
FTP: port 21, data port TCP 1024 and higher
-
HTTP: port 80
-
HTTPS: port 443
-
Management access: ports 8443 (HTTPS) and 8080 (HTTP)
-
SSH: port 22
The web security appliance must be able to make an outbound connection on the following ports:
-
DNS: port 53
-
FTP: port 21, data port TCP 1024 and higher
-
HTTP: port 80
-
HTTPS: port 443
-
LDAP: port 389 or 3268
-
LDAP over SSL: port 636
-
LDAP with SSL for global catalog queries: port 3269
-
NTP: port 123
-
SMTP: port 25
Note |
If you do not open port 80 and 443, you cannot download feature keys. |
For more information, see firewall information in the user guide for your version of AsyncOS for Cisco Web Security Appliances.