Breadcrumbs

Connectivity Requirements

CLIENT CONNECTIVITY REQUIREMENTS

  1. Allow outbound access to the following domains. Whitelist these on your firewall as necessary or if you use an SSL web proxy then bypass them from the proxy:

auth.blastwave.io and lighthouse.blastwave.io on TCP port 443.

  1. Outbound UDP ports to all required destinations.

  2. Resolution of DNS requests must be supported by the network.

  3. If you use DNS over HTTPS, ensure it is configured in your OS and not in your browser to allow the BlastShield Client to use its associated DNS server.

  4. Ensure that the timezone is correctly set on your computer for your location and that the clock is set accurately.

AGENT CONNECTIVITY REQUIREMENTS

  1. Outbound UDP ports to all required destinations.

  2. Resolution of DNS requests must be supported by the network.

GATEWAY CONNECTIVITY REQUIREMENTS

  1. Outbound UDP ports to all required destinations.

  2. Resolution of DNS requests must be supported by the network.

CLOUD HOSTED ORCHESTRATOR CONNECTIVITY REQUIREMENTS

  1. Allow outbound access to the lighthouse.blastwave.io domain.

  2. Allow UDP Port 12345 inbound to the Orchestrator on your firewall.

  3. Resolution of DNS requests must be supported by the network.

ON PREMISE ORCHESTRATOR CONNECTIVITY REQUIREMENTS

On premise, non-airgapped Orchestrator

  1. Allow outbound access to the lighthouse.blastwave.io domain.

  2. Allow UDP Port 12345 inbound to the Orchestrator on your firewall.

  3. Resolution of DNS requests must be supported by the network.

On premise, fully airgapped Orchestrator

  1. Allow UDP Port 12345 inbound from the local network to the Orchestrator.