Required firewall rules

The FileCap server and the different FileCap plugins require multiple firewall rules, they are described here.

Firewall rules

FileCap Server

FileCap requires the following firewall rules to operate within a DMZ network.

Required firewall rules

Port Source Destination Description
Port 80 (TCP) Internet FileCap Server Connecting from the Internet to the FileCap server.

Will be used for:

  • Clients connecting to the web portal. (Will be redirected to HTTPS automatically)
  • Let’s Encrypt certificate validation process.
Port 443 (TCP) Internet FileCap Server Connecting from the Internet to the FileCap server.

Will be used for:

  • Clients connecting to the FileCap server (web portal/plugins)
  • Downloading transfers.
Port 80 (TCP) FileCap Server Internet Can be used for some operating system updates
Port 443 (TCP) FileCap Server Internet Will be used for:

  • Most operating system updates and all FileCap Server version updates.
  • Connecting to SMS token providers.
  • Requesting Let’s Encrypt certificates.
Port 123 (UDP) FileCap Server Configured NTP server.
(could be internal or external depending on your network configuration)		 Used for syncronizing the date/time on the FileCap Server
Port 53 (UDP) FileCap Server Configured DNS server.
(could be internal or external depending on your network configuration)		 Used for resolving domain names on the internet.
Port 25 (TCP) FileCap Server Mailserver/SMTP relay.
(could be internal or external depending on your mail server configuration)		 Used by the FileCap Server to send emails.

Optional firewall rules

Port Source Destination Description
Port 161 (UDP) SNMP monitoring device FileCap Server Will be used for SNMP monitoring, if SNMP is running on the FileCap server.

FileCap Outlook Plugin + Windows Plugin + MacOS app + iOS app

These plugins are working with the FileCap API and are using port 443 (HTTPS), so there are no additional firewall rules needed.