brycez 2011-12-12 08:43:04 PSTI'm currently getting ready to deploy some new storage nodes and our IT security team wants to confirm our firewall configs, which means justifying every open port. So it looks like I'm going to need to document every necessary port for FOG. I was wondering if somebody might already have something like this written down somewhere that I could take a look at, otherwise I'll just have to go through and figure it out. I can see that being useful documentation to keep on the FOG wiki though, and I'll be sure to share whatever I find. blackout48 2011-12-12 13:11:07 PSTIts not documented afaik, off the top of my head: FTP - 20 + 21 SSH - 22 Apache - 80 + 443 Portmap - 111 NFS - 2049 MySQL - 3306 UDP Send uses - 63100+ in FOG brycez 2011-12-13 08:11:21 PSTThanks for the list Blackout! A few things to add: TFTP - 69 FOG by default doesn't support HTTPS (though it is doable, it just took me a while and broke some things), so 443 isn't required. If anyone notices anything else that's missing, please go ahead and add it. And once I get the iptables config written up and confirmed I'll go ahead and post it in the wiki, with a link to it from here. blackout48 2011-12-13 16:16:38 PSTArhh yes, i forgot TFTP! 443 (HTTPS) will be added in 0.33 An iptables config would rock! brycez 2011-12-14 06:32:38 PSTDoes that mean SSL will be supported by the FOG client service and the boot image? brycez 2011-12-14 09:51:30 PSTAccording to the UDPCast documentation, the default portbase is 9000+. Is there a reason why FOG uses a non-standard port for UDPCast?