DNS Edge ports - BlueCat DNS Edge

DNS Edge User Guide

Product name
BlueCat DNS Edge

For detailed information about DNS Edge system requirements, configuration, and deployment, see the BlueCat DNS Edge Deployment Guide.

Source IP Destination IP Source Port Destination Port Protocol Description
<Service Point IP> <Namespace forwarder IP> Ephemeral 53 UDP + TCP Outbound DNS queries
<Client IP> <Service Point> Ephemeral 53 UDP + TCP Inbound DNS queries
<Monitoring System IP> <Service Point IP> 80 Ephemeral TCP Diagnostics endpoint
<Monitoring System IP> <Service Point IP>     ICMP Pings
<DHCP Server IP> <Service Point IP> 67 Ephemeral UDP Used for DHCP configuration of service points.
<Service Point IP> <DHCP Server IP> 68 Ephemeral UDP Used for DHCP configuration of Service Points.
<Service Point IP> <NTP Server IP> 123 Ephemeral UDP NTP synchronization. By default this will reach out to coreos.pool.ntp.org unless provided with other values using DHCP.
<Service Point IP> <Cloud Instance IP> 443 Ephemeral TCP
  • Communication channel between the service point and DNS Edge Cloud.

    The service point will periodically reach out to the DNS Edge Cloud using a mutually authenticated HTTPS connection to check for configuration updates and system upgrades.

  • Sending query logs up to kinesis for delivery to the DNS Edge Cloud.
  • Retrieving system updates from Amazon ECR.
<Admin Device IP> <Service Point IP> 443 Ephemeral TCP Used with the Anycast configuration command line utility.
<Client IP> <Service Point IP> 22 Ephemeral TCP Optional. Required for SSH for AWS and Azure service points.