DNS Edge ports - BlueCat DNS Edge

For detailed information about DNS Edge system requirements, configuration, and deployment, see the BlueCat DNS Edge Deployment Guide.

Source IP	Destination IP	Source Port	Destination Port	Protocol	Description
<Service Point IP>	<Namespace forwarder IP>	Ephemeral	53	UDP + TCP	Outbound DNS queries
<Client IP>	<Service Point>	Ephemeral	53	UDP + TCP	Inbound DNS queries
<Monitoring System IP>	<Service Point IP>	80	Ephemeral	TCP	Diagnostics endpoint
<Monitoring System IP>	<Service Point IP>			ICMP	Pings
<DHCP Server IP>	<Service Point IP>	67	Ephemeral	UDP	Used for DHCP configuration of service points.
<Service Point IP>	<DHCP Server IP>	68	Ephemeral	UDP	Used for DHCP configuration of Service Points.
<Service Point IP>	<NTP Server IP>	123	Ephemeral	UDP	NTP synchronization. By default this will reach out to coreos.pool.ntp.org unless provided with other values using DHCP.
<Service Point IP>	<Cloud Instance IP>	443	Ephemeral	TCP	Communication channel between the service point and DNS Edge Cloud. The service point will periodically reach out to the DNS Edge Cloud using a mutually authenticated HTTPS connection to check for configuration updates and system upgrades. Sending query logs up to kinesis for delivery to the DNS Edge Cloud. Retrieving system updates from Amazon ECR.
<Admin Device IP>	<Service Point IP>	443	Ephemeral	TCP	Used with the Anycast configuration command line utility.
<Client IP>	<Service Point IP>	22	Ephemeral	TCP	Optional. Required for SSH for AWS and Azure service points.