DNS Edge ports - BlueCat DNS Edge

DNS Edge Deployment Guide
Locale
English
Product name
BlueCat DNS Edge
Source IP Destination IP Source Port Destination Port Protocol Description
<Service Point IP> <Namespace forwarder IP> Ephemeral 53 UDP + TCP Outbound DNS queries
<Client IP> <Service Point> Ephemeral 53 UDP + TCP Inbound DNS queries
<Monitoring System IP> <Service Point IP> 80 Ephemeral TCP Diagnostics endpoint
<Monitoring System IP> <Service Point IP>     ICMP Pings
<DHCP Server IP> <Service Point IP> 67 Ephemeral UDP Used for DHCP configuration of service points.
<Service Point IP> <DHCP Server IP> 68 Ephemeral UDP Used for DHCP configuration of Service Points.
<Service Point IP> <NTP Server IP> 123 Ephemeral UDP NTP synchronization. By default this will reach out to coreos.pool.ntp.org unless provided with other values using DHCP.
<Service Point IP> <Cloud Instance IP> 443 Ephemeral TCP
  • Communication channel between the service point and DNS Edge Cloud.

    The service point will periodically reach out to the DNS Edge Cloud using a mutually authenticated HTTPS connection to check for configuration updates and system upgrades.

  • Sending query logs up to kinesis for delivery to the DNS Edge Cloud.
  • Retrieving system updates from Amazon ECR.
<Admin Device IP> <Service Point IP> 443 Ephemeral TCP Used with the Anycast configuration command line utility.
<Client IP> <Service Point IP> 22 Ephemeral TCP Optional. Required for SSH for AWS and Azure service points.