Clearswift SECURE Email Gateway V3.*



Similar documents
Clearswift SECURE Gateway V4.2

Frequently Asked Questions (FAQ)

SECURE ICAP Gateway. Blue Coat Implementation Guide. Technical note. Version /12/13. Product Information. Version & Platform SGOS 6.

Frequently Asked Questions

Clearswift SECURE Exchange Gateway Installation & Setup Guide. Version 1.0

QUICK START GUIDE. Cisco C170 Security Appliance

Virtual Web Appliance Setup Guide

Virtual Managment Appliance Setup Guide

Sophos Mobile Control Installation prerequisites form

F-SECURE MESSAGING SECURITY GATEWAY

I N S T A L L A T I O N M A N U A L

Cisco Expressway IP Port Usage for Firewall Traversal. Cisco Expressway X8.1 D December 2013

emerge 50P emerge 5000P

QUICK START GUIDE. Cisco S170 Web Security Appliance. Web Security Appliance

The Bomgar Appliance in the Network

Cisco TelePresence Video Communication Server (Cisco VCS) IP Port Usage for Firewall Traversal. Cisco VCS X8.5 December 2014

SolarWinds Log & Event Manager

F-Secure Messaging Security Gateway. Deployment Guide

eprism Security Suite

WhatsUpGold. v14.2. Getting Started with WhatsUp Gold MSP Edition

Deploying Virtual Cyberoam Appliance in the Amazon Cloud Version 10

Testing and Restoring the Nasuni Filer in a Disaster Recovery Scenario

Chapter 6 Configuring the SSL VPN Tunnel Client and Port Forwarding

VMware vcenter Log Insight Getting Started Guide

Secure Web Service - Hybrid. Policy Server Setup. Release Manual Version 1.01

QUICK START GUIDE Cisco M380 and Cisco M680 Content Security Management Appliance

Ports Reference Guide for Cisco Virtualization Experience Media Engine for SUSE Linux Release 9.0

Endpoint web control overview guide. Sophos Web Appliance Sophos Enterprise Console Sophos Endpoint Security and Control

Contents Notice to Users

PANO MANAGER CONNECTOR FOR SCVMM& HYPER-V

Gain the virtualisation advantage with Clearswift

A host-based firewall can be used in addition to a network-based firewall to provide multiple layers of protection.

Web Remote Access. User Guide

Management, Logging and Troubleshooting

Application Note: GateManager Internet requirement and port settings

Cisco S380 and Cisco S680 Web Security Appliance

A D M I N I S T R A T O R V 1. 0

Security Provider Integration Kerberos Authentication

Web Security Firewall Setup. Administrator Guide

AVer Video Conferencing Network Setup Guide

CA Process Automation

MIMEsweeper for SMTP

Citrix EasyCall Gateway Pre-Installation Checklist

SSL-TLS VPN 3.0 Certification Report. For: Array Networks, Inc.

Sophos Appliance Configuration Guide

SuperLumin Nemesis. Administration Guide. February 2011

Connecting to and Setting Up a Network

EXPLORER. TFT Filter CONFIGURATION

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

Proof of Concept Guide

Network Configuration Settings

Deploying F5 to Replace Microsoft TMG or ISA Server

Deploying ACLs to Manage Network Security

Sophos UTM. Remote Access via PPTP. Configuring UTM and Client

How to configure the Panda GateDefender Performa explicit proxy in a Local User Database or in a LDAP server

Monitoring Clearswift Gateways with SCOM

Testing and Restoring the Nasuni Filer in a Disaster Recovery Scenario

1 You will need the following items to get started:

PineApp Surf-SeCure Quick

IBM Proventia Management SiteProtector. Configuring Firewalls for SiteProtector Traffic Version 2.0, Service Pack 8.1

HREP Series DVR DDNS Configuration Application Note

2 Downloading Access Manager 3.1 SP4 IR1

Integrated SSL Scanning

fåíéêåéí=péêîéê=^çãáåáëíê~íçêûë=dìáçé

Preinstallation Requirements Guide

Administering the Web Server (IIS) Role of Windows Server

User Identification and Authentication

Four reasons to upgrade from MIMEsweeper for SMTP to the Clearswift SECURE Gateway

1 Data information is sent onto the network cable using which of the following? A Communication protocol B Data packet

Configuration Example

nappliance misa Server 2006 Standard Edition Users Guide For use with misa Appliances 2006 nappliance Networks, Inc.

.Trustwave.com Updated October 9, Secure Web Gateway Version 11.0 Amazon EC2 Platform Set-up Guide

Sophos Appliance Configuration Guide

VMware vcenter Log Insight Security Guide

Required Ports and Protocols. Communication Direction Protocol and Port Purpose Enterprise Controller Port 443, then Port Port 8005

How To Set Up A Load Balancer With Windows 2010 Outlook 2010 On A Server With A Webmux On A Windows Vista V (Windows V2) On A Network With A Server (Windows) On

SECURE Web Gateway. HTTPS/SSL Technical FAQ. Version 1.1. Date 04/10/12

Microsoft Lync Server 2010

RealPresence Platform Director

Sophos UTM. Remote Access via SSL. Configuring UTM and Client

VMware Identity Manager Connector Installation and Configuration

Controlling Risk, Conserving Bandwidth, and Monitoring Productivity with Websense Web Security and Websense Content Gateway

TCP/IP ports on the CMM, IMM, IMM2, RSA II, BMC, and AMM management processors 1

Starting a Management Session

LifeSize UVC Access Deployment Guide

Securely manage data center and network equipment from anywhere in the world.

Technical Brief for Windows Home Server Remote Access

It should be noted that the installer will delete any existing partitions on your disk in order to install the software required to use BLËSK.

Quick Start Guide. Sendio System Protection Appliance. Sendio 5.0

Radius Integration Guide Version 9

XMS Quick Start Guide

Barracuda Networks Technical Documentation. Barracuda SSL VPN. Administrator s Guide. Version 2.x RECLAIM YOUR NETWORK

Release Notes for Version

Dell One Identity Cloud Access Manager How To Deploy Cloud Access Manager in a Virtual Private Cloud

Unified Communications in RealPresence Access Director System Environments

Installing and Configuring vcenter Support Assistant

Securing Networks with PIX and ASA

Dell One Identity Cloud Access Manager SonicWALL Integration Overview

Transcription:

Clearswift SECURE Email Gateway V3.* Ports and Protocols Issue 3.12 July 2015

Copyright Version 1.1, July, 2015 Published by Clearswift Ltd. 1995 2015 Clearswift Ltd. All rights reserved. The materials contained herein are the sole property of Clearswift Ltd unless otherwise stated. The property of Clearswift may not be reproduced or disseminated or transmitted in any form or by any means electronic, mechanical, photocopying, recording, or otherwise stored in any retrievable system or otherwise used in any manner whatsoever, in part or in whole, without the express permission of Clearswift Ltd. Information in this document may contain references to fictional persons, companies, products and events for illustrative purposes. Any similarities to real persons, companies, products and events are coincidental and Clearswift shall not be liable for any loss suffered as a result of such similarities. The Clearswift Logo and Clearswift product names are trademarks of Clearswift Ltd. All other trademarks are the property of their respective owners. Clearswift Ltd. (registered number 3367495) is registered in Britain with registered offices at 1310 Waterside, Arlington Business Park, Theale, Reading, Berkshire RG7 4SA, England. Users should ensure that they comply with all national legislation regarding the export, import, and use of cryptography. Clearswift reserves the right to change any part of this document at any time. Page 2 of 8 2

Contents 1 Connection Ports and Protocols... 4 2 External Connections... 5 3 Internal Connections... 7 4 Spam Signatures (Cloud)... 8 5 Subnet handling... 8 Page 3 of 8 3

1 Connection Ports and Protocols The Clearswift SECURE Email Gateway requires connectivity to both internal and external services over a number of different ports and protocols. Customers should be aware that these entries may be liable to change with limited notice as Clearswift extends its infrastructure to exceed demands. Where possible, customers should configure their firewalls to utilise the Hostname of the service and only use IP addresses if defining access by hostname is not possible. Page 4 of 8 4

2 External Connections The following table summarizes the required connections from the Gateway to or from servers outside the organization. Description Protocol Port Hostname/URL Current IP Address Appliance online help Product updates apphelp.clearswift.com 79.125.18.99 app-patches.clearswift.net 72.21.192.0/19 207.171.160.0/19 87.238.86.0/23 178.236.4.0/19 License key validation TCP 443 applianceupdate.clearswift.com 213.146.158.142 46.227.51.215 Kaspersky AV updates kav-update-8-1.clearswift.net kav-update-8-2.clearswift.net 184.72.245.1 79.125.8.252 kav-update-8-3.clearswift.net kav-update-8-4.clearswift.net kav-update-8-5.clearswift.net kav-update-8-6.clearswift.net 175.41.136.7 174.129.26.118 176.34.251.142 54.254.98.96 Sophos AV updates sav-update-1.clearswift.net sav-update-2.clearswift.net 184.72.245.1 79.125.8.252 sav-update-3.clearswift.net sav-update-4.clearswift.net sav-update-5.clearswift.net sav-update-6.clearswift.net 175.41.136.7 174.129.26.118 176.34.251.142 54.254.98.96 TRUSTmanager stats collection TCP 443 applianceupdate.clearswift.com 213.146.158.142 46.227.51.215 TRUSTmanager host checking UDP 8007 Reputations1.clearswift.net Reputations2.clearswift.net reputations3.clearswift.net reputations4.clearswift.net 175.41.129.251 46.51.189.37 79.125.11.244 75.101.139.128 Page 5 of 8 5

Description Protocol Port Hostname/URL Current IP Address Spam Signatures cloud bulkmail1.clearswift.net bulkmail2.clearswift.net 84.39.153.31 64.191.223.35 (Also see section 1.3 of this document) bulkmail3.clearswift.net bulkmail4.clearswift.net bulkmail5.clearswift.net 38.113.116.210 216.163.188.45 84.39.152.31 Spam Signatures download (pre 3.1) RSS Feed spamupdate-appliance.clearswift.com 204.236.225.214 75.101.147.224 www.clearswift.com 162.13.22.202 Service availability list services1.clearswift.net services2.clearswift.net 72.21.192.0/19 207.171.160.0/19 services3.clearswift.net 87.238.86.0/23 178.236.4.0/19 89.21.228.84 DNS UDP 53 NTP server UDP 123 time.clearswift.net Forms part of the NTP Pool project Page 6 of 8 6

3 Internal Connections Description Protocol Port Comment FTP TCP 20,21 For backing up and restoring the system SSH TCP 22 Secure console access HTTP/S TCP 443 Browser access to the management UI Peer communications HTTP Browser access to the PMM UI NTLM (PMM) 135 Connecting to directory servers for user authentication TCP 139 445 NTLM (PMM) UDP 137 Connecting to directory servers for user authentication LDAP (Address lists & PMM) TCP 389 3268 For accessing directory servers Accessing Global Catalogue server (normal and secure) 3269 LDAP Key server (Encryption) HTTP Key server (Encryption) Greylisting (Antispam) TCP 389 TCP 11371 UDP 19200 Accessing keyservers over LDAP Accessing keyservers over HTTP Greylisting synchronisation between peers SNMP alerts UDP 162 SNMP alerts from the system SFTP Lexical data import TCP 22 To the server containing the lexical data SYSLOG export TCP 514 To the central SYSLOG server FTPS Lexical data import TCP 990 To the server containing the lexical data Page 7 of 8 7

4 Spam Signatures (Cloud) This service uses global load balancers to distribute traffic to the most appropriate servers in your region. The entries in the table are effective for EMEA, but customers in APAC, US, Latin America and Japan should determine their local resolvers by using NSLOOKUP as follows: C:\>nslookup Default Server: XXXXX.clearswift.org Address: 10.XX.XX.XXX > set type=a > bulkmail1.clearswift.net Server: XXXXX.clearswift.org Address: 10.XX.XX.XXX Name: resolver.1.geo.ctmail.com Address: 84.39.153.31 Aliases: bulkmail1.clearswift.net For each of the 5 designated servers (bulkmail1 to bulkmail5) and setting their firewalls accordingly. 5 Subnet handling Some of the addresses entered are in the format of 72.21.192.0/19, which implies that they use a special 19 bit subnet mask and when applied to IP address ranges can extend or reduce the maximum permissible number of addresses available for usage. In this example 72.21.192.0/19, provides for a range of addresses from 72.21.192.1 to 72.21.223.254. Page 8 of 8 8

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information