View Categories

Firewall Requirements

< 1 min read

Mailborder servers use various ports and protocols for handling web and email traffic. The required ports and protocols are listed below for Mailborder servers to function properly.

Inbound connections to services such as SSH or web can be controlled with a firewall, but outbound connections should not be restricted as doing so will either severely degrade server performance or break it all together. For example, many spam and virus updates are requested via ports 80 and 443 TCP.

Note that an inbound connection to the Master server from each Child server is required on port 443 TCP (https) for logging and task management. 

 

Used on or Bound to Public Interface

Service Port Protocol Network Flow 
web80, 443TCPBoth
smtp25TCPBoth
smtps*465TCPIn
submission*587TCPIn
razor2703TCPOut
dns53 UDP Out 
PGP11371TCP

Out

Pyzor24441UDP

Out

NTP123UDP

Out

*Enabling firewall access to 465 and 587 is optional. 

 

Bound to Loopback Interface 127.0.0.1

ServicePortProtocolPurpose
 mailborder10025TCPmilter in
 mailborder10026TCPmilter out
 dkim1255 TCP signing 
 dmarc1256 TCP authentication
 spamd783 TCP spamassassin 
 searchd9306TCPsphinx
 mysqld3306TCP database