I am trying to implement a new software, on Windows 2016. It requires firewall to be opened in and out bound for TLS protocol for a specific port. But I can't see TLS protocol in the list of protocols in Firewall settings. Can someone please help? Is it something I need to enable or install?
Related
Both SSH and https are secure protocol used for computers to communicate. But why is https more widely used on client/browser-server communication? Any technical reasons?
HTTPS is basically the secure version of HTTP, which is used for web access.
SSH is basically the secure version of telnet, which is used for terminal access. Since web traffic is more common than terminal, HTTPS is more common.
I am going to launch new messenger service. However, it is not XMPP based. Instead I am using my own protocol (for certain reasons).
What I am not able to decide on is what port shall I use for this service. A typical XMPP based messenger uses port 5222. Shall I use the same or different port?
Here are pros and cons I can think of...
If I use same port 5222 like other XMPP messengers, being standard port for messenger service my service will also use same port (But are there any cons here for my protocol being non-XMPP?)
If I use some other port, I fear that many firewalls will not allow traffic on non-standard port. Also anti-spywares too might flag my application as suspicious.
Please I need advice from experts.
Just wrap your protocol into TLS connection on 443 port: it will be never blocked by firewalls (just because https connections uses this in the same way) and TLS traffic cannot be identified by "anti-spyware" software
We are investigating adding the Kaa client to our products and using the Kaa server operationally, and we have some questions in the networking and protocol area. Our main concern is having the IoT device access the IoT server through the Internet without being blocked by the firewall at the IoT device in a "typical" environment. For this reason we see that HTTP/HTTPS using port 80/443 is often used.
Do you believe that most of the IoT device will communicate because most firewalls allow all outgoing traffic?
Or do you think that most end users will have to explicitly configure a firewall rule for the IoT device?
What was the rationale for using the port numbers 9889/9888 and 9999/9997?
Can these port numbers be reasonablely modified? If so, where and how?
Is there a specification of the Kaa TCP protocol?
Thank You
Keith Krajewski
About Kaa TCP protocol use official documentation page
you can change ports of bootstrap and operations services in this files:
bootstrap-http-transport.config
bootstrap-tcp-transport.config
operations-http-transport.config
operations-tcp-transport.config
I'm using Java to create a client/server application that communicates using TCP. The network that the client is running on has an outbound firewall that prevents the client from connecting to the server. Is there any way/workaround to create a TCP connection through this firewall?
I have tried to use common ports that are open such as port 80, 443, and 113, however the firewall appears to drop the connection once it is made (possibly by detecting non-protocol packets).
An alternative would be to have the client software run as a Java applet hosted from an external website, however I'm not sure if the outbound firewall would still be able to block this connection.
Any help would be greatly appreciated.
Assuming that the users have internet access, and you can't telnet through port 80/443, it probably mean that the users connect through an HTTP Proxy configured in the browser.
You could try to research on various tunneling methods via an HTTP Proxy... Though, that will be a very unstable hack.
I recommend contacting the system administrator, explaining your needs, and see what he/she suggests.
You can try to communicate using http or https. By tunneling your protocol over these, it might be possible that the firewall lets your traffic through.
I want to add the option of automatic port forwarding (NAT Traversal) to an application.
I know this can be done using UPnP (specifically the part that communicates with the device presenting itself as an IGD - Internet Gateway Device).
I need to be able to test this port forwarding feature while developing it. And whatever big router system company traffic is routered over
Doesn't provide UPnP.
Wouldn't want me messing around with it while it's in live service.
My question is:
Does anyone know of any software that acts as or emulates a UPnP compatible router?
You could use Windows Firewall / Internet Connection Sharing, which supports UPnp by default. Just setup another machine, with Internet Connection Sharing activated, and you will have a UPnp router.
Also, you could check the UPnp forum for more information here.
Later edit:
You could also try setting up a linux/unix firwall with igd activated.
Here is a forum post for ubuntu.
And there is a miniUPnp project too.