Difference between revisions of "Docs/Network Requirements for Userful Appliance"

From Userful Support
Jump to: navigation, search
Line 3: Line 3:
Network Requirements for Userful™ Appliance}}
Network Requirements for Userful™ Appliance}}

Revision as of 14:32, 30 January 2018

Copyright © 2019 Userful Corporation. All rights reserved.
(Updated 2018.01.30)

To return to the main documentation page, Click Here.

Userful™ Appliance Network Requirements

The Userful™ Appliance controls it's own firewall using Linux iptables. It has many network services that can be seen from a network scan, including:

  • TCP/22 SSH
  • TCP/80 HTTP
  • TCP/5353 Avahi/Zeroconf
  • TCP/9000 Userful Control Center web portal
  • TCP/21 FTP Server (optional)
  • TCP/UDP 137-139, 445 Samba Server for Windows File Sharing (optional)
  • And others required for full functionality of the system

The Userful Appliance assumes unfiltered access to the LAN/VLAN in which the zero clients reside. The Userful host communicates with zero client devices across a range of TCP and UDP ports. We recommend that the isolated LAN/VLAN for the zero clients be configured to not block internal communication on any port.

Remote Connectivity

The following optional services communicate with Userful host(s) over the Internet when available:

  • Userful Cloud Service: The Userful host communicates with the Userful cloud service via port 443
  • Userful Support VPN: The Userful host communicates with the Userful VPN via port 443

These connections are initiated entirely as outbound communication. Typically no changes to the local network are required for these to work (as most networks allow outbound secure web connections port 443 used by web-browsers for secure https connections to websites). In some circumstances, highly locked-down networks may prevent communication with these optional remote connectivity services. These services (or an Internet connection) are not required for operation of the Userful system, but do make management monitoring and maintenance much easier. If you are in a one of these highly locked-down networks you can choose either to operate without these extra services or to permit your Userful host(s) to access the Internet on port 443 (HTTPS).

Related Links