Common ExSign Firewall Ports Setting

ExSign Email Signatures for Microsoft Exchange Server

Common ExSign Firewall Ports Setting


Question: What ports are required to be opened for ExSign Email Stamping System? 


Solution:

ExSign Portal, ExSign Agent, and ExSign Sent Items Update tools form a complete solution for stamping emails with rules, disclaimers, and banners. This whole composite system requires the following ports to be opened in the firewall settings:

 

ExSign Control Server: 

  • ExSign Portal: 443 

  • API HUB: 8776 

  • Sent Items Update Service: 443 

***(Sent Items Update Service can be installed either on a standalone server or on ExSign Control Server itself).


Exchange Server: 

  • SSL Port: 443

ExSign Database: 

  • Microsoft SQL Server: 1433

Active Directory Server:

  • LDAP: 389

  • GC (Global Catalog): 3268 

  • LDAPS: 636

The communication Matrix for all the ExSign Components is given below


ExSign Components Communication
Sr. No.ExSign CommunicationSource IP ServerDestination IP ServerDestination PortsFirewall RulesService AccountFurther DetailsPurpose
1
ExSign Portal  accessible over secure SSL web browsers
 (and API hub can be accessed by agent server and sent item update only)		• ExSign Agent IP• Portal IP Server• 8775 (optional) 
 • 443 (Public)
 • 8776 		• Inbound port needs to be open for communication between web browsers and ExSign Portals• ExSign Publishing and Analytics Service
 • ExSign Sent Items Update Service
 • ExSign Email Service		• API hub installed on Control Server communicated with Agent and Sent Item Updates
 • Secure SSL-based communication with API hub on the portal machine
  API URL should be accessible		• Managing users and roles
 • Show different reports
 • Manage global configurations for all connected agents (Exchange Servers)
 • Provides centralized management
 • Audit logs
 • API hub serves as an interface for communication between agent and portal
2
ExSign Transport Agent• ExSign Agent IP• Portal IP Server• 8776• No inbound port needs to be open; will only need outbound communications with ExSign API• ExSign Agent Service• Exsign Agent communicates with API hub installed on Control Server on port 8776• Agent communicates with API hub without interfering with the ExSign portal communication. 
 • Includes audit logging, error logs, etc, via the API hub
3
Sent Items Update Service Component (Note: It can be installed on the same Portal machine Or on a separate machine. )• Sent Items Update Server IP• Exchange (EWS)
 • API Hub		• 443
 • 8776 (API Hub)		• No inbound port needs to be open; will only need outbound communications with ExSign API• Sent Items Update Service
 • ExSign Email Service		• Sent Items Update component communicates with API installed on Control Server on port 8776.
 • Secure SSL-based communication with API hub on the portal machine 
 • Sent Item Update service should be able to access EWS URL on the Exchange
 • It can be installed on the same Portal machine or on a standalone machine.		• This service updates the Sent Items folder with the appropriate signature and disclaimer.
4
ExSign Database Server• Portal Server IP
• Database Server IP• 1433• Inbound rule for allowing SQL server port• SQL Server Service
 • SQL Browser Service		• For remote connectivity of the SQL server, the SQL Browser service must be in a running state• Serves as the database for the ExSign solution
5
Active Directory Server• Portal Server IP
 • ExSign Agent IP		• Active Directory Server IP• 389 LDAP Port
• 3268 Global Catalog		• Inbound rule for allowing AD  server to allow Global Admin and Entity Admin logins• Active Directory Services• For authentication of Global Admin and Entity Admin users.

For any further query regarding ExSign, please do not hesitate to contact us at support@hostingcontroller.com 

Article ID: 3412, , Modified: 7/25/2023 at 4:31 AM

Was this article helpful?

Share this article