Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 523 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos STAS need port 1220 to be open on client side

MMASLOUH

Hello,

When i'm implementing Sophos transparent authetification, i found that the STAS agent run communication on port 1220.

But In documentation it mentioned that the agent need only port 135 and 445 to be open on the client side.

RODC (STAS) : 17.16.X.A

Windows Client : 172.16.X.T

TCP    172.16.X.A:52552     172.16.X.T:135      ESTABLISHED
TCP    172.16.X.A:52553     172.16..X.T:135      ESTABLISHED
TCP    172.16.X.A:52554     172.16..X.T:1220     ESTABLISHED



This thread was automatically locked due to age.
Parents
  • 0

    Hello, thank you for your query...

    The Active Directory Server should have the following ports open:

    • STA Collector > XG Firewall (UDP 6060)
    • XG Firewall > STA Collector (UDP 6677)
    • STA Agent > STA Collector (TCP 5566)

    You only need to enable the following ports if you are using these methods:

    Workstation Polling Methode (WMI) oder Registry Read Access:

    • Outgoing TCP 135
    • Outgoing TCP 445

    Logoff Detection Ping:

    • Outgoing ICMP

    STAS Collector Test:

    • Incoming/Outgoing UDP 50001

    STAS Configuration Sync:

    • Incoming/Outgoing TCP 27015

    Thanks & Regards,
    _______________________________________________________________

    Vivek Jagad | Team Lead, Global Support & Services 


    Sophos Community | Product Documentation | Sophos Techvids | SMS
    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0

    Hello, thank you for your query...

    The Active Directory Server should have the following ports open:

    • STA Collector > XG Firewall (UDP 6060)
    • XG Firewall > STA Collector (UDP 6677)
    • STA Agent > STA Collector (TCP 5566)

    You only need to enable the following ports if you are using these methods:

    Workstation Polling Methode (WMI) oder Registry Read Access:

    • Outgoing TCP 135
    • Outgoing TCP 445

    Logoff Detection Ping:

    • Outgoing ICMP

    STAS Collector Test:

    • Incoming/Outgoing UDP 50001

    STAS Configuration Sync:

    • Incoming/Outgoing TCP 27015

    Thanks & Regards,
    _______________________________________________________________

    Vivek Jagad | Team Lead, Global Support & Services 


    Sophos Community | Product Documentation | Sophos Techvids | SMS
    If a post solves your question please use the 'Verify Answer' button.

Children
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?