Scribd
Upload
168 views2 pages

Userful Network Firewall Rules

This document outlines the network firewall rules needed to allow proper functionality of the Userful server and its various components. It lists the protocols, ports, and destinations that must be accessible for remote management, local access, managing zero clients, communication between the server and uClients, and some optional local ports.

Uploaded by

Jose Elenilson
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
168 views2 pages

Userful Network Firewall Rules

This document outlines the network firewall rules needed to allow proper functionality of the Userful server and its various components. It lists the protocols, ports, and destinations that must be accessible for remote management, local access, managing zero clients, communication between the server and uClients, and some optional local ports.

Uploaded by

Jose Elenilson
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 2

Network Firewall Rules

Remote Management Access


The following sites must be accessible by the Userful server for complete remote management
and support from Userful

Protocol Port Destination Rule Description


updates.userful.com
TCP 80 updates2.userful.com Out
umirror2.com Software Updates
TCP 80 keys.userful.com Out Licensing*
Userful Manager
TCP 443 Out
cloud-connect.userful.com Licensing *
TCP 443 remote.userful.com Out Support VPN
Remote content upload and
TCP/UDP 3478 In/Out
turn.userful.com (optional) webcam
* For Userful versions 10.2 and earlier only, or licenses issued prior to April 2019. Later releases
are licensed via cloud-connect.userful.com.

Local Access Rules


These ports must be accessible from the LAN to allow local browser-based access to Userful

Protocol Port Destination Protocol Description


TCP 5353 LAN Peer Discovery
TCP 5701 LAN Failover
TCP 9000 LAN HTTP Userful Control Center
Multicast 54327 224.2.2.3 Failover
UDP 54327 LAN Failover
TCP 54328 LAN Failover
Zero Client Access Rules
Managing Zero Client Receivers on a separated switch, network or VLAN is strongly
recommended​ rather than attempting to firewall zero clients as they require many dynamic ports, some
of which can be exploited to attack system services.

Protocol Port Destination Description


UDP 26668 Zero Clients Zero Client Discovery
TCP 52330 Zero Clients Zero Client Discovery
UDP 52330 - 52630 incl. Zero Clients Zero Client Discovery
Various High
TCP/UDP Numbers Zero Clients Zero Client Communication

uClient Access Rules


The following ports and services must be available between a Userful On-Premise server and
endpoints running uClient, or between uClients in a Cloud deployment, for proper functionality.

Protocol Port Destination Description


UDP 123 uClients NTP
TCP 8554 uClients RTSP Streaming
TCP/UDP 14725 uClients Video Synchronization
TCP 14276 uClients Video Synchronization
UDP 16668 uClients uClient Discovery

Optional Functionality
These local ports on an On-Premise Server are optional
Protocol Port Destination Protocol Description
TCP 21 LAN FTP FTP File Transfer
TCP 22 LAN SSH Local SSH
TCP 80 LAN HTTP Redirects to 9000
TCP/UDP 137-139, 445 LAN SMB Windows File sharing
TCP/UDP 631 LAN HTTP Printer Configuration

You might also like