Results 1 to 4 of 4

Thread: Firewall / Ports

  1. #1
    Join Date
    Nov 2005
    Posts
    61
    Rep Power
    9

    Default Firewall / Ports

    I was looking over the latest requirements for M3. I have had a test server running from M1 to M3 and am getting ready to put a production server online.

    The QuickStart Guide lists the following ports:

    Table 1 Zimbra Port Mapping

    Postfix 25
    HTTP 80
    POP3 110
    IMAP 143
    LDAP 389
    HTTPS 443
    Tomcat IMAP SSL 993
    Tomcat POP SSL 995
    Tomcat LMTP 7025

    Questions: I need to know what ports need to be open to the Internet. Port 7071 is not listed but I know that one needs to be included if I want to administer when off my local network. What about LMTP 7025? Should this be open to the Internet as well or just the local network? Are there any other ports that need to be open?

    - Rob

  2. #2
    Join Date
    Sep 2005
    Posts
    2,103
    Rep Power
    14

    Default ports to open

    Which ports to open depend partly on the services you offer - if you're not offering un-encrypted IMAP, for instance, don't bother opening 143.

    One thing to think about, tho - if your host knows itself by it's public name (mail.whatever.com) which resolves to the public IP on the fw - make sure the fw allows connections from the private ip on the box (192.168.foo.bar) to the public IP on all the ports. (esp. ldap (389) and sql (7306/7307))

  3. #3
    Join Date
    Aug 2005
    Location
    San Mateo, CA
    Posts
    4,789
    Rep Power
    19

    Default

    Here at Zimbra we open 25 for mail and the SSL service ports:

    HTTPS 443
    Tomcat IMAP SSL 993
    Tomcat POP SSL 995
    Looking for new beta users -> Co-Founder of Acompli. Previously worked at Zimbra (and Yahoo! & VMware) since 2005.

  4. #4
    Join Date
    Nov 2008
    Location
    UK - Nottingham
    Posts
    1
    Rep Power
    6

    Post External Clients Adding attachments

    Quote Originally Posted by marcmac View Post
    ... One thing to think about, tho - if your host knows itself by it's public name (mail.whatever.com) which resolves to the public IP on the fw - make sure the fw allows connections from the private ip on the box (192.168.foo.bar) to the public IP on all the ports. (esp. ldap (389) and sql (7306/7307))
    Just wanted to say thanks, marcmac, for the above info. I recently migrated to Zimbra (Open Source edition) and all works great from inside our network, but my external clients could not add attachments - until I set my firewall to forward ports 7306 & 7307, as you suggested above. Works a treat now.

    Cheers,


    UniqueFD

Similar Threads

  1. Firewall issues
    By back3 in forum Installation
    Replies: 2
    Last Post: 03-08-2007, 03:14 AM
  2. which ports for Zimbra behind firewall
    By tyco in forum Administrators
    Replies: 2
    Last Post: 10-21-2006, 03:08 PM
  3. LDAP auth working only when firewall stopped
    By brousky in forum Installation
    Replies: 1
    Last Post: 09-19-2006, 06:32 AM
  4. Firewall ports I have opened up
    By robroadie in forum Administrators
    Replies: 1
    Last Post: 11-10-2005, 07:42 AM
  5. Firewall ports and NAT
    By mrcottonmouth in forum Installation
    Replies: 3
    Last Post: 10-23-2005, 07:53 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •