CLIENT CONNECTIVITY REQUIREMENTS
-
Allow outbound access to the following domains. Whitelist these on your firewall as necessary or if you use an SSL web proxy then bypass them from the proxy:
auth.blastwave.io and lighthouse.blastwave.io on TCP port 443.
-
Outbound UDP ports to all required destinations.
-
Resolution of DNS requests must be supported by the network.
-
If you use DNS over HTTPS, ensure it is configured in your OS and not in your browser to allow the BlastShield Client to use its associated DNS server.
-
Ensure that the timezone is correctly set on your computer for your location and that the clock is set accurately.
AGENT CONNECTIVITY REQUIREMENTS
-
Outbound UDP ports to all required destinations.
-
Resolution of DNS requests must be supported by the network.
GATEWAY CONNECTIVITY REQUIREMENTS
-
Outbound UDP ports to all required destinations.
-
Resolution of DNS requests must be supported by the network.
CLOUD HOSTED ORCHESTRATOR CONNECTIVITY REQUIREMENTS
-
Allow outbound access to the
lighthouse.blastwave.iodomain. -
Allow UDP Port 12345 inbound to the Orchestrator on your firewall.
-
Resolution of DNS requests must be supported by the network.
ON PREMISE ORCHESTRATOR CONNECTIVITY REQUIREMENTS
On premise, non-airgapped Orchestrator
-
Allow outbound access to the
lighthouse.blastwave.iodomain. -
Allow UDP Port 12345 inbound to the Orchestrator on your firewall.
-
Resolution of DNS requests must be supported by the network.
On premise, fully airgapped Orchestrator
-
Allow UDP Port 12345 inbound from the local network to the Orchestrator.