Customizing the Firewall Rules for DMZ

To enable communication in the DSM infrastructure across the limits of the firewall of a DMZ, this firewall needs to be customized.

Specify the following settings:

  • Open the port for the Transport Layer so that it can set up the connection in the DMZ.
    Port 5052 is the default port for the Transport Layer; you may change this port in the configuration table, if necessary.
    See Transport Layer > TCP Port for Transport Layer Communication.
  • Open the port for the Management Point Website to make sure the communication between the DSM infrastructure components works.
    Port 8080 is the default port; you may change this port in the configuration table, if necessary.
    See Management Point Server > Port of the Web Site.
  • To enable the distribution process, open the port of the HTTP server you specified when setting up the HTTP/HTTPS depot.
  • Examples for configuring the external firewall:
    The example scenarios 1 and 2 use port 5052 for the Transport Layer:

    Port 8081 is used continuously for distribution: