Firewall Exceptions
From EnablerWiki
Created 18 June 2010 Last Reviewed 2 February 2012
Contents |
Overview
Various Firewall ports are required to be opened for full Enabler and EEE functionality to work correctly. These are outlined below.
Note that various ports relating to EEE can be customised, so ensure the correct port number is taken into consideration when opening/closing firewall ports. This includes but is not limited to Query Server, EEE Web Management Interface, SQL Server and others.
Enabler
Enabler Head Office Server
Required:
TCP Port 445 (Inbound from local Head Office Nodes if any exist)
Optional:
TCP Port 445 (Inbound from all stores) if using Enabler Internal Comms to transfer Nibbler Messages
TCP Port 445 (Outbound to Host Server) if using Enabler Internal Comms to transfer exported .hos files or import ISL-FILE.dat files from EEE or another 3rd party Host system.
TCP Port for Query Server (Outbound to EEE Query Server) if EEE is in use. See #Query Server later on this page for further details.
TCP Port for EEE Web Management Interface (Outbound to EEE Web Server) if EEE is in use
Enabler Store Server
Required:
TCP Port 445 (Inbound from local tills within same store)
Optional:
TCP Port 445 (Outbound to Head Office Server) if using Enabler Internal Comms to transfer Nibbler Messages
TCP Port 445 (Outbound to Host Server) if using Enabler Internal Comms to transfer exported .hos files or import ISL-FILE.dat files from EEE or another 3rd party Host system.
TCP Port for Query Server (Outbound to EEE Query Server) if EEE is in use. See #Query Server later on this page for further details.
TCP Port for EEE Web Management Interface (Outbound to EEE Web Server) if EEE is in use
Enabler Tills and Head Office Nodes
Required:
TCP Port 445 (Outbound to local server)
Optional:
TCP Port 445 (Inbound from EEE Server) if EEE Online Inventory is in use
TCP Port for Query Server (Outbound to EEE Query Server) if EEE is in use. See #Query Server later on this page for further details.
TCP Port for EEE Web Management Interface (Outbound to EEE Web Server) if EEE is in use
Further Details:
Enabler requires the standard Windows File and Printer Sharing ports open. These allow tills to communicate with the store server.
As is often recommended, TCP port 445 should be the only port opened. Other ports such as TCP/UDP 135-139 have been known to be exploited by Malware in the past, so should remain blocked where possible.
If EEE Online Inventory is in use, specifically Online Transfers, port 445 is used to print Transfer Dockets
If EEE Query Server is in use, the TCP port number can be customised. This must be taken into consideration when opening the required ports.
If EEE is in use, the website port can be customised. This must be taken into consideration when opening the required ports.
EEE
Query Server
Used to provide answers to data queries made by stores
Required:
TCP Port for Query Server (Inbound from all tills/store servers). The first EEE company usually uses port 9000, and subsequent companies use 9001, 9002, etc.
EEE Web Pages
Required:
TCP Port for EEE Web Management Interface (Inbound from all tills/store servers and any other devices that require access to the EEE Management Interface). This is usually HTTP/Port 80.
Optional:
TCP Port for Secure EEE Web Management Interface (Inbound as above) if a SSL Certificate for secure https web communications is installed and configured on the Web Server. This is usually HTTPS/Port 443.
EEE Import/Export directories
Required:
TCP Port 445 (Inbound from all Store Servers) if Enabler Internal Comms is used to transfer Import/Export data to and from a store server.
Enabler Enterprise POS
MSDTC
Required:
TPC Port 135 and UDP Port 137. This is necessary to allow replication to function.
SQL Server
Required:
TPC Port 1433 and UDP Port 1434.
Dot Net Remoting
Required:
TPC Port 8080 (or other port as configured).
