--VQ--
Site Admin
Joined: 06 Jan 2003
Posts: 590
|
 Posted: Thu Jul 06, 2006 11:06 am Post subject: Open these ports on vqSA |
 |
|
The vqSA email security appliance includes a firewall and may be situated outside of your corporate security perimeter. Alternatively, you may place vqSA within your protected zone. In this case, open the following ports (TCP):
| Code: | 25 <== This port must be open to accept email
even if you handle inbound port 25 and map it from your firewall*
22 SSH for Vanquish login (updates & authorized diagnosis)
80 SOAP commands for bonded mail and sender ID
8080 " " "
443* SSL for users who use Web access
587* Outgoing mail (SMTP) for users outside the enterprise
|
(*) Port 25 must be open on the vqSA and an A record must exist. This port is not just used for inbound mail (which you might be routing within your network), but is also used for the Message Release mechanism and other infrastructure commands from out data center.
Ports 443 and 587 do not need to be open, if you restrict outside access or allow VPN connections only.
To further restrict port access by authorized IP range, use this data:
-- Port 80 & 8080: 64.130.235.(162~171)
-- Port 22: 64.130.238.106, 65.96.20.233, and 64.130.238.106
Finally, create a DNS 'A' record for your security appliance (e.g. the IP address of vq.{yourdomain}. This is needed for both the release of challenged messages and for for access to the browsable user & admin menu screens from outside of your local network. |
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
