AppDefense

 View Only

  • 1.  firewall ports required for saas connectivity

    Posted Mar 06, 2019 11:39 AM

        hi

    what are the firewall ports required for saas connectivity and also we use a proxy for outbound connections , did anyone have issues going through a proxy

    I am able to test connectivity to vcenter and manager using the following commands

    How to Verify Appliance Connectivity Manually

    however I get 200 ok with vcenter connectivity testing , , instead of 302 is this expected ?

    thanks



  • 2.  RE: firewall ports required for saas connectivity
    Best Answer

    Broadcom Employee
    Posted Mar 07, 2019 09:02 PM

    Hi,

    443 must be enabled, that's it.

    Session established?

    Try this: netstat | grep ':https'

    Connection possible with that?

    curl -v telnet://appdefense.vmware.com:443

    URL depends on the region.



  • 3.  RE: firewall ports required for saas connectivity

    Posted Mar 08, 2019 10:09 AM

    thanks beck for your suggestions

    tried

    netstat |grep ':https' and i can see vcenter connection as established so thats working

    when i use curl -v telnet://appdefense.vmware.com:443  i get connection refused

    but when i use curl -I i get connection established ,

    whats the difference between the two commands , why one gets through and



  • 4.  RE: firewall ports required for saas connectivity

    Broadcom Employee
    Posted Mar 10, 2019 06:23 PM

    The official documentation is testing the connection to SaaS Manager (output 200) and to the vCenter (output 302). My two commands was just to test the connection to the SaaS Manager - to see if HTTPS is possible or if the connection was refused for e.g. a firewall. But of course, there are more ways to do it.

    Are you appliance connected now the Saas Manager?