...
| Info | ||
|---|---|---|
| ||
MDM default port is 20445 as shown throughout this KB. On older versions of FileWave this was 20443. To confirm the defined port, check the Port setting in FileWave Admin > Preferences > Mobile > MDM Server > Port |
| Server Ports | Service | Protocol | Server In/Out | Description |
|---|---|---|---|---|
| 80 | HTTP | TCP | Outgoing | FileWave Software Updates (apple.com & microsoft.com) |
| 443 | HTTPS | TCP | Outgoing | FileWave License Server (fwks.filewave.com & logstash.filewave.com) FileWave Software Updates (apple.com) FileWave/TeamViewer Session Server (rcs.filewave.com) FileWave/TeamViewer Push Notification Server (fwpn.filewave.com) |
| 443 | HTTPS | TCP | Incoming | FileWave Web Administrator |
| 20015 | Proprietary | TCP | Incoming | FileWave Client to Server (Will be deprecated in a future release) |
| 20016 | SSL | TCP | Incoming | FileWave Admin to Server |
| 20017 | SSL | TCP | Incoming | FileWave Client to Server: Secure (replaces 20015) |
| 20019 | SSL | TCP | Incoming | Booster to Server: Priority Traffic |
| 20030 | VNC | TCP | Incoming | FileWave Client to Server: Remote Control Data |
| 20005 | SSL** | TCP | Incoming | FileWave Client to Server: ZeroMQ* FileWave Admin to Server: ZeroMQ* (Optional before v14 for Mobile Client only installs; mandatory since v14+) Booster to Server: ZeroMQ* |
| 20006 | SSL** | TCP | Incoming | FileWave Client to Server: ZeroMQ* FileWave Admin to Server: ZeroMQ* (Optional before v14 for Mobile Client only installs; mandatory since v14+) Booster to Server: ZeroMQ* |
| 19995 | Local Only | TCP | Incoming | Server local loop: Internal Messaging Publishing |
| 20441 | Proprietary | TCP | Incoming | FileWave Client to Server: Remote Client Monitor |
| 20443 | HTTPS | TCP | Incoming | FileWave Client to Server: Profiles Booster to Server: Inventory/Discovery |
| 20445 | HTTPS | TCP | Incoming | FileWave Client to Server: Inventory Booster to Server: Inventory/Discovery |
| 20446 | HTTPS | TCP | Incoming | FileWave Admin and Web Admin to Dashboard |
* ZeroMQ includes: Remote Control Publishing, Remote Control Routing, device renaming, revoking device certificates, push notifications ** Only encrypted when compatibility mode is disabled | ||||
| Client Ports | Service | Protocol | Server In/Out | Description |
| 20010 | Proprietary | TCP | FileWave Admin to Client: Client Monitor: macOS, Windows & Android APK | |
| 20020 | Local Only | N/A | FileWave Client local loopback for fwgui process to fwcld process (Kiosk)◊ | |
| 20031 | Local Only | N/A | FileWave Client local loopback for Remote Control◊ | |
| ◊ Listening only, unreachable from network | ||||
| Apple MDM Ports | Service | Protocol | Server In/Out | Description |
| 443 | HTTPS | TCP | Outgoing | APNs to Apple's servers (17.0.0.0/8): starting from Version 13.0+ |
| TCP | FileWave Admin to iTunes, DEP & VPP (17.0.0.0/8) | |||
| TCP | Device to iTunes, DEP & VPP (17.0.0.0/8) | |||
| 2195 | APNS | TCP | Outgoing | APNs to Apple's server (17.0.0.0/8) - Deprecated March 2021, replaced with 2197 |
| 2197 | APNS | TCP | Outgoing | NOT USED BY FILEWAVE. Alternate APNs to Apple's server (17.0.0.0/8) - See port 443 |
| 5223 | APNS | TCP | Outgoing | APNs to Apple's servers (17.0.0.0/8) |
| 20443 | HTTPS | TCP | Incoming | Device to Server: Profiles & MDM |
| 20445 | HTTPS | TCP | Incoming | FileWave Admin to Server |
| Android EMM Ports | Service | Protocol | Server In/Out | Description |
| 443 | HTTPS | TCP | Outgoing | Server to EMM commands (androidmanagement.googleapis.com) |
Device to Activation servers (*.clients.google.com), Play Store (play.google.com), EMM commands (androidmanagement.googleapis.com) FileWave Admin to Play Store (play.google.com) | ||||
| 20016 | SSL | TCP | Incoming | FileWave Admin to Server |
| 20445 | HTTPS | TCP | Incoming | FileWave Admin to Server: Inventory Companion App to Server: Location Tracking |
| Chromebook | Service | Protocol | Server In/Out | Description |
| 443 | HTTPS | TCP | Outgoing | Server to Chrome API |
| TCP | Chromebook to Chrome API (www.googleapis.com) | |||
| 20016 | SSL | TCP | Incoming | FileWave Admin to Server |
| 20445 | HTTPS | TCP | Incoming | FileWave Admin to Server |
| TCP | Chromebook Inventory Extension to Server (optional) | |||
| Android APK Ports | Service | Protocol | Server In/Out | Description |
| 20015 | Proprietary | TCP | Incoming | Device to Server (Will be deprecated in a future release) |
| 20016 | SSL | TCP | Incoming | FileWave Admin to Server |
| 20017 | SSL | TCP | Incoming | Device to Server: Secure (replaces 20015) |
| 20010 | Proprietary | TCP | FileWave Admin to Device: Client Monitoring | |
| 20443 | HTTPS | TCP | Incoming | Device to Server |
| 20445 | HTTPS | TCP | Incoming | FileWave Admin to Server: Inventory |
| 5228-5230 | GCM | TCP | Outgoing | Server to Google Cloud Messaging |
| TCP | Device to Google Cloud Messaging | |||
| Windows MDM Ports | Service | Protocol | Server In/Out | Description |
| 443 | HTTPS | TCP | Incoming | Device to Server (Windows MDM Enrollment URL) |
| 443 | HTTPS | TCP | Outgoing | Server to Windows MDM |
| 443 | HTTPS | TCP | Device to Windows MDM | |
NOTE: The FileWave client will also install and all previously listed client ports are also used. | ||||
| Booster Ports | Service | Protocol | Server In/Out | Description |
| 20018 | SSL | TCP | Booster to Booster: Priority Traffic | |
| 20013 | Proprietary | TCP | Incoming | FileWave Client to Booster (Will be deprecated in a future release) (Booster Priority fallback) |
| 20014 | SSL | TCP | Incoming | FileWave Client to Booster: Secure (replaces 20013) (Booster Priority fallback) |
| 20003 | SSL†† | TCP | Incoming | FileWave Client to Booster: ZeroMQ† |
| TCP | Booster to Booster: ZeroMQ† | |||
| 20004 | SSL†† | TCP | Incoming | FileWave Client to Booster: ZeroMQ† |
| TCP | Booster to Booster: ZeroMQ† | |||
† ZeroMQ includes: Remote Control Publishing, Remote Control Routing, device renaming, revoking device certificates, push notifications †† Only encrypted when compatibility mode is disabled | ||||
| IVS (Imaging) Ports | Service | Protocol | Server In/Out | Description |
| 67 | DHCP | UDP | Client to IVS‡‡ | |
| 69 | TFTP | UDP | Client to IVS‡‡ | |
| 80 | HTTP | TCP | Client to IVS | |
| 111 | NFS | TCP/UDP | Client to IVS‡ | |
| 4011 | DHCP | TCP/UDP | Client to IVS: UEFI PXE‡ | |
| 2049 | NFS | TCP/UDP | Client to IVS‡ | |
| 20005 | SSL | TCP | Incoming | IVS to Server: ZeroMQ |
| 20006 | SSL | TCP | Incoming | IVS to Server: ZeroMQ |
| 20015 | Proprietary | TCP | Incoming | IVS to Server (Will be deprecated in a future release) |
| 20016 | SSL | TCP | Incoming | IVS to Server |
| 20017 | SSL | TCP | Incoming | IVS to Server: Secure (replaces 20015) |
| 20443 | HTTPS | TCP | Incoming | IVS to Server: Inventory |
| 20444 | HTTPS | TCP | Outgoing | Server to IVS |
| TCP | Web Admin interface (Appliance only) Client to IVS | |||
| 20445 | HTTPS | TCP | Incoming | IVS to Server: Inventory |
‡ TCP/IP & UDP ‡‡ UDP only | ||||
...