So I just set up ZCS on a firewalled server and have migrated the accounts. I am now ready to start letting clients connect to the server and I want to know which ports I need to forward through my firewall.
I have users who use Linux, Windows, and Mac OS X. I want them all to be able to send and receive email, use the web client, and have access to the global address list. I'd like to limit access to encrypted links only.
So I was planning on opening up the following ports:
25 -- SMTP, for receiving emails from users and inbound email to users
389 -- LDAP, this is the global address list no?
443 -- HTTPS, SSL encrypted web mail access
993 -- IMAP, SSL encrypted IMAP access
My mac users are going to use the iSync adapter and my windows users are using the outlook adapter. Are there any other ports I need to forward to support those adapters?
Also, what kind of security is there on the LDAP server access? Is it password protected like IMAP and SMTP? Is it safe to expose the LDAP server?