The following hostnames and outbound ports are required for AirShield to operate when using Ethernet behind a firewall.
No inbound port mappings are required for the AirShield to operate. DHCP is enabled by default to obtain IP Addressing, Routing and DNS resolvers.
| Hostname | Port | Purpose |
|---|---|---|
| api.802secure.net | 443/tcp | Communication to the 802 Secure cloud for data and AirShield command/control. Multiple connections are made every 1-2 minutes and typically terminate in less than a minute. |
| puppet-bb27199ad137.802secure.net | 8140/tcp | Software updates - Required for regular maintenance with a connection being made every 45 minutes. |
| support.802secure.net | 22/tcp 123/udp 8838/tcp | Maintenance/support of AirShield 22/tcp is not required for operation but may be required for additional troubleshooting. It may be blocked if desired. 123/udp is used for network time protocol synchronization. AirShield will honor a DHCP-provided NTP server if this host can not be reached. 8838/tcp is a secured proxy to reach additional software updates. |
The default NTP servers are:
- support.802secure.net
- [0-3].pool.ntp.org
Should these services be unavailable a valid NTP server MUST be configured via DHCP Option 42.
AirShield can be configured to use internal proxies via the serial console or via SSH. Open a support ticket for access credentials. This will override the support.802secure.net 8838/tcp proxy.
External Notification Source IP Addresses
Notifications that are configured to send to Internet-accessible addresses will come from one of the following source IP addresses:
- IPv4: 34.203.86.122
- IPv6: 2600:1f18:413f:7d32:4518:5067:6edd:a8ae
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article