Difference between revisions of "Docs/Network Requirements for Userful Appliance"

From Userful Support
Jump to: navigation, search
Line 14: Line 14:
 
* '''TCP/9000''' Userful Control Center web portal
 
* '''TCP/9000''' Userful Control Center web portal
 
* '''TCP/21''' FTP Server ''(optional)''
 
* '''TCP/21''' FTP Server ''(optional)''
* '''TCP/UDP 137-139, 445''' Samba Server for Windows File Sharing ''(optional)''  
+
* '''TCP/UDP 137-139, 445''' Samba Server for Windows File Sharing ''(optional, not enabled by default)''  
 
* And others required for full functionality of the system
 
* And others required for full functionality of the system
  
Line 24: Line 24:
 
* '''Userful Cloud Service:''' The Userful host communicates with the Userful cloud service via port '''443'''
 
* '''Userful Cloud Service:''' The Userful host communicates with the Userful cloud service via port '''443'''
 
* '''Userful Support VPN:''' The Userful host communicates with the Userful VPN via port '''443'''
 
* '''Userful Support VPN:''' The Userful host communicates with the Userful VPN via port '''443'''
 +
* '''TURN server:''' may be used when copying files via the Userful cloud or accessing the the web-cam monitoring feature via '''TCP and UDP port 3478'''
 +
  
 
These connections are initiated entirely as outbound communication. Typically no changes to the local network are required for these to work (as most networks allow outbound secure web connections port 443 used by web-browsers for secure https connections to websites). In some circumstances, highly locked-down networks may prevent communication with these optional remote connectivity services. These services (or an Internet connection) are not required for operation of the Userful system, but do make management monitoring and maintenance much easier. If you are in a one of these highly locked-down networks you can choose either to operate without these extra services or to permit your Userful host(s) to access the Internet on port 443 (HTTPS).
 
These connections are initiated entirely as outbound communication. Typically no changes to the local network are required for these to work (as most networks allow outbound secure web connections port 443 used by web-browsers for secure https connections to websites). In some circumstances, highly locked-down networks may prevent communication with these optional remote connectivity services. These services (or an Internet connection) are not required for operation of the Userful system, but do make management monitoring and maintenance much easier. If you are in a one of these highly locked-down networks you can choose either to operate without these extra services or to permit your Userful host(s) to access the Internet on port 443 (HTTPS).

Revision as of 13:32, 14 February 2018


Copyright © 2019 Userful Corporation. All rights reserved.
(Updated 2018.02.14)

To return to the main documentation page, Click Here.


Userful™ Appliance Network Requirements

The Userful™ Appliance controls it's own firewall using Linux iptables. It has many network services that can be seen from a network scan, including:

  • TCP/22 SSH
  • TCP/80 HTTP
  • TCP/5353 Avahi/Zeroconf
  • TCP/9000 Userful Control Center web portal
  • TCP/21 FTP Server (optional)
  • TCP/UDP 137-139, 445 Samba Server for Windows File Sharing (optional, not enabled by default)
  • And others required for full functionality of the system

The Userful Appliance assumes unfiltered access to the LAN/VLAN in which the zero clients reside. The Userful host communicates with zero client devices across a range of TCP and UDP ports. We recommend that the isolated LAN/VLAN for the zero clients be configured to not block internal communication on any port.

Remote Connectivity

The following optional services communicate with Userful host(s) over the Internet when available:

  • Userful Cloud Service: The Userful host communicates with the Userful cloud service via port 443
  • Userful Support VPN: The Userful host communicates with the Userful VPN via port 443
  • TURN server: may be used when copying files via the Userful cloud or accessing the the web-cam monitoring feature via TCP and UDP port 3478


These connections are initiated entirely as outbound communication. Typically no changes to the local network are required for these to work (as most networks allow outbound secure web connections port 443 used by web-browsers for secure https connections to websites). In some circumstances, highly locked-down networks may prevent communication with these optional remote connectivity services. These services (or an Internet connection) are not required for operation of the Userful system, but do make management monitoring and maintenance much easier. If you are in a one of these highly locked-down networks you can choose either to operate without these extra services or to permit your Userful host(s) to access the Internet on port 443 (HTTPS).


Related Links